Does DeviceManagementServiceConfig.ReadWrite.All require admin consent?

Yes, Application permissions always require admin consent. An administrator must grant consent in the Azure portal.

How do I add DeviceManagementServiceConfig.ReadWrite.All to my app registration?

Go to Azure Portal > App registrations > Your app > API permissions > Add permission > Microsoft Graph, then search for DeviceManagementServiceConfig.ReadWrite.All and select it.

DeviceManagementServiceConfig.ReadWrite.All Permission - Microsoft Graph API

Permission Details

Application Permission

Read and write Microsoft Intune configuration

Allows the app to read and write Microsoft Intune service properties including device enrollment and third party service connection configuration, without a signed-in user.

Permission ID: 5ac13192-7ace-4fcf-b828-1a26f28068ee

Delegated Permission

Read and write Microsoft Intune configuration

Allows the app to read and write Microsoft Intune service properties including device enrollment and third party service connection configuration.

Permission ID: 662ed50a-ac44-4eef-ad86-62eed9be2a29

Properties

Property	Type	Description
`id`	`string`	The unique identifier for an entity. Read-only.
`termsAndConditions`	`microsoft.graph.termsAndConditions collection`	The terms and conditions associated with device management of the company.
`androidForWorkSettings`	`object`	The singleton Android for Work settings entity.
`microsoftTunnelHealthThresholds`	`microsoft.graph.microsoftTunnelHealthThreshold collection`	Collection of MicrosoftTunnelHealthThreshold settings associated with account.
`roleScopeTags`	`microsoft.graph.roleScopeTag collection`	The Role Scope Tags.
`windowsUpdateCatalogItems`	`microsoft.graph.windowsUpdateCatalogItem collection`	A collection of windows update catalog items (fetaure updates item , quality updates item)
`exchangeConnectors`	`microsoft.graph.deviceManagementExchangeConnector collection`	The list of Exchange Connectors configured by the tenant.
`troubleshootingEvents`	`microsoft.graph.deviceManagementTroubleshootingEvent collection`	The list of troubleshooting events for the tenant.
`privilegeManagementElevations`	`microsoft.graph.privilegeManagementElevation collection`	The endpoint privilege management elevation event entity contains elevation details.
`userExperienceAnalyticsBatteryHealthAppImpact`	`microsoft.graph.userExperienceAnalyticsBatteryHealthAppImpact collection`	User Experience Analytics Battery Health App Impact
`intents`	`microsoft.graph.deviceManagementIntent collection`	The device management intents
`windowsAutopilotDeploymentProfiles`	`microsoft.graph.windowsAutopilotDeploymentProfile collection`	Windows auto pilot deployment profiles
`resourceOperations`	`microsoft.graph.resourceOperation collection`	The Resource Operations.
`configManagerCollections`	`microsoft.graph.configManagerCollection collection`	A list of ConfigManagerCollection
`userExperienceAnalyticsBatteryHealthDevicePerformance`	`microsoft.graph.userExperienceAnalyticsBatteryHealthDevicePerformance collection`	User Experience Analytics Battery Health Device Performance

Showing 15 of 192 properties. View all on Microsoft Learn →

Graph Methods

Delegated access App-only access

Methods
GET `/deviceAppManagement/vppTokens`
GET `/deviceAppManagement/vppTokens/{vppTokenId}`
GET `/deviceManagement/applePushNotificationCertificate`
GET `/deviceManagement/applePushNotificationCertificate/downloadApplePushNotificationCertificateSigningRequest`
GET `/deviceManagement/complianceManagementPartners`
GET `/deviceManagement/complianceManagementPartners/{complianceManagementPartnerId}`
GET `/deviceManagement/conditionalAccessSettings`
GET `/deviceManagement/deviceEnrollmentConfigurations`
GET `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}`
GET `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}/assignments`
GET `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}/assignments/{enrollmentConfigurationAssignmentId}`
GET `/deviceManagement/deviceManagementPartners`
GET `/deviceManagement/deviceManagementPartners/{deviceManagementPartnerId}`
GET `/deviceManagement/exchangeConnectors`
GET `/deviceManagement/exchangeConnectors/{deviceManagementExchangeConnectorId}`
GET `/deviceManagement/importedWindowsAutopilotDeviceIdentities`
GET `/deviceManagement/importedWindowsAutopilotDeviceIdentities/{importedWindowsAutopilotDeviceIdentityId}`
GET `/deviceManagement/mobileThreatDefenseConnectors`
GET `/deviceManagement/mobileThreatDefenseConnectors/{mobileThreatDefenseConnectorId}`
GET `/deviceManagement/notificationMessageTemplates`
GET `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}`
GET `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}/localizedNotificationMessages`
GET `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}/localizedNotificationMessages/{localizedNotificationMessageId}`
GET `/deviceManagement/remoteAssistancePartners`
GET `/deviceManagement/remoteAssistancePartners/{remoteAssistancePartnerId}`
GET `/deviceManagement/termsAndConditions`
GET `/deviceManagement/termsAndConditions/{termsAndConditionsId}`
GET `/deviceManagement/termsAndConditions/{termsAndConditionsId}/acceptanceStatuses`
GET `/deviceManagement/termsAndConditions/{termsAndConditionsId}/acceptanceStatuses/{termsAndConditionsAcceptanceStatusId}`
GET `/deviceManagement/termsAndConditions/{termsAndConditionsId}/acceptanceStatuses/{termsAndConditionsAcceptanceStatusId}/termsAndConditions`
GET `/deviceManagement/termsAndConditions/{termsAndConditionsId}/assignments`
GET `/deviceManagement/termsAndConditions/{termsAndConditionsId}/assignments/{termsAndConditionsAssignmentId}`
GET `/deviceManagement/verifyWindowsEnrollmentAutoDiscovery`
GET `/deviceManagement/windowsAutopilotDeviceIdentities`
GET `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}`
GET `/organization`
GET `/organization/{organizationId}`
GET `/users`
GET `/users/{usersId}`
GET `/users/{usersId}/exportDeviceAndAppManagementData`
POST `/deviceAppManagement/vppTokens`
POST `/deviceAppManagement/vppTokens/{vppTokenId}/syncLicenses`
POST `/deviceManagement/complianceManagementPartners`
POST `/deviceManagement/deviceEnrollmentConfigurations`
POST `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}/assign`
POST `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}/assignments`
POST `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}/setPriority`
POST `/deviceManagement/deviceManagementPartners`
POST `/deviceManagement/exchangeConnectors`
POST `/deviceManagement/exchangeConnectors/{deviceManagementExchangeConnectorId}/sync`
POST `/deviceManagement/importedWindowsAutopilotDeviceIdentities`
POST `/deviceManagement/importedWindowsAutopilotDeviceIdentities/import`
POST `/deviceManagement/mobileThreatDefenseConnectors`
POST `/deviceManagement/notificationMessageTemplates`
POST `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}/localizedNotificationMessages`
POST `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}/sendTestMessage`
POST `/deviceManagement/remoteAssistancePartners`
POST `/deviceManagement/remoteAssistancePartners/{remoteAssistancePartnerId}/beginOnboarding`
POST `/deviceManagement/remoteAssistancePartners/{remoteAssistancePartnerId}/disconnect`
POST `/deviceManagement/termsAndConditions`
POST `/deviceManagement/termsAndConditions/{termsAndConditionsId}/acceptanceStatuses`
POST `/deviceManagement/termsAndConditions/{termsAndConditionsId}/assignments`
POST `/deviceManagement/windowsAutopilotDeviceIdentities`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/assignUserToDevice`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/unassignUserFromDevice`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/updateDeviceProperties`
POST `/organization/{organizationId}/setMobileDeviceManagementAuthority`
POST `/users`
PATCH `/deviceAppManagement/vppTokens/{vppTokenId}`
PATCH `/deviceManagement/applePushNotificationCertificate`
PATCH `/deviceManagement/complianceManagementPartners/{complianceManagementPartnerId}`
PATCH `/deviceManagement/conditionalAccessSettings`
PATCH `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}`
PATCH `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}/assignments/{enrollmentConfigurationAssignmentId}`
PATCH `/deviceManagement/deviceManagementPartners/{deviceManagementPartnerId}`
PATCH `/deviceManagement/exchangeConnectors/{deviceManagementExchangeConnectorId}`
PATCH `/deviceManagement/mobileThreatDefenseConnectors/{mobileThreatDefenseConnectorId}`
PATCH `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}`
PATCH `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}/localizedNotificationMessages/{localizedNotificationMessageId}`
PATCH `/deviceManagement/remoteAssistancePartners/{remoteAssistancePartnerId}`
PATCH `/deviceManagement/termsAndConditions/{termsAndConditionsId}`
PATCH `/deviceManagement/termsAndConditions/{termsAndConditionsId}/acceptanceStatuses/{termsAndConditionsAcceptanceStatusId}`
PATCH `/deviceManagement/termsAndConditions/{termsAndConditionsId}/acceptanceStatuses/{termsAndConditionsAcceptanceStatusId}/termsAndConditions`
PATCH `/deviceManagement/termsAndConditions/{termsAndConditionsId}/assignments/{termsAndConditionsAssignmentId}`
PATCH `/organization/{organizationId}`
PATCH `/users/{usersId}`
DELETE `/deviceAppManagement/vppTokens/{vppTokenId}`
DELETE `/deviceManagement/complianceManagementPartners/{complianceManagementPartnerId}`
DELETE `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}`
DELETE `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}/assignments/{enrollmentConfigurationAssignmentId}`
DELETE `/deviceManagement/deviceManagementPartners/{deviceManagementPartnerId}`
DELETE `/deviceManagement/exchangeConnectors/{deviceManagementExchangeConnectorId}`
DELETE `/deviceManagement/importedWindowsAutopilotDeviceIdentities/{importedWindowsAutopilotDeviceIdentityId}`
DELETE `/deviceManagement/mobileThreatDefenseConnectors/{mobileThreatDefenseConnectorId}`
DELETE `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}`
DELETE `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}/localizedNotificationMessages/{localizedNotificationMessageId}`
DELETE `/deviceManagement/remoteAssistancePartners/{remoteAssistancePartnerId}`
DELETE `/deviceManagement/termsAndConditions/{termsAndConditionsId}`
DELETE `/deviceManagement/termsAndConditions/{termsAndConditionsId}/acceptanceStatuses/{termsAndConditionsAcceptanceStatusId}`
DELETE `/deviceManagement/termsAndConditions/{termsAndConditionsId}/acceptanceStatuses/{termsAndConditionsAcceptanceStatusId}/termsAndConditions`
DELETE `/deviceManagement/termsAndConditions/{termsAndConditionsId}/assignments/{termsAndConditionsAssignmentId}`
DELETE `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}`
DELETE `/users/{usersId}`

Methods
GET `/deviceAppManagement/sideLoadingKeys`
GET `/deviceAppManagement/sideLoadingKeys/{sideLoadingKeyId}`
GET `/deviceAppManagement/vppTokens`
GET `/deviceAppManagement/vppTokens/{vppTokenId}`
GET `/deviceAppManagement/vppTokens/getLicensesForApp`
GET `/deviceManagement/applePushNotificationCertificate`
GET `/deviceManagement/applePushNotificationCertificate/downloadApplePushNotificationCertificateSigningRequest`
GET `/deviceManagement/appleUserInitiatedEnrollmentProfiles`
GET `/deviceManagement/appleUserInitiatedEnrollmentProfiles/{appleUserInitiatedEnrollmentProfileId}`
GET `/deviceManagement/appleUserInitiatedEnrollmentProfiles/{appleUserInitiatedEnrollmentProfileId}/assignments`
GET `/deviceManagement/appleUserInitiatedEnrollmentProfiles/{appleUserInitiatedEnrollmentProfileId}/assignments/{appleEnrollmentProfileAssignmentId}`
GET `/deviceManagement/complianceManagementPartners`
GET `/deviceManagement/complianceManagementPartners/{complianceManagementPartnerId}`
GET `/deviceManagement/conditionalAccessSettings`
GET `/deviceManagement/dataSharingConsents`
GET `/deviceManagement/dataSharingConsents/{dataSharingConsentId}`
GET `/deviceManagement/depOnboardingSettings`
GET `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}`
GET `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/defaultIosEnrollmentProfile`
GET `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/defaultMacOsEnrollmentProfile`
GET `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/defaultTvOSEnrollmentProfile`
GET `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/defaultVisionOSEnrollmentProfile`
GET `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/enrollmentProfiles`
GET `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/enrollmentProfiles/{enrollmentProfileId}`
GET `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/enrollmentProfiles/{enrollmentProfileId}/exportMobileConfig`
GET `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/getEncryptionPublicKey`
GET `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/importedAppleDeviceIdentities`
GET `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/importedAppleDeviceIdentities/{importedAppleDeviceIdentityId}`
GET `/deviceManagement/depOnboardingSettings/getExpiringVppTokenCount`
GET `/deviceManagement/derivedCredentials`
GET `/deviceManagement/derivedCredentials/{deviceManagementDerivedCredentialSettingsId}`
GET `/deviceManagement/deviceConfigurations/{deviceConfigurationId}`
GET `/deviceManagement/deviceConfigurations/{deviceConfigurationId}/groupAssignments/{deviceConfigurationGroupAssignmentId}/deviceConfiguration`
GET `/deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.windowsDomainJoinConfiguration/networkAccessConfigurations/{deviceConfigurationId}`
GET `/deviceManagement/deviceEnrollmentConfigurations`
GET `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}`
GET `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}/assignments`
GET `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}/assignments/{enrollmentConfigurationAssignmentId}`
GET `/deviceManagement/deviceManagementPartners`
GET `/deviceManagement/deviceManagementPartners/{deviceManagementPartnerId}`
GET `/deviceManagement/exchangeConnectors`
GET `/deviceManagement/exchangeConnectors/{deviceManagementExchangeConnectorId}`
GET `/deviceManagement/exchangeOnPremisesPolicies/{deviceManagementExchangeOnPremisesPolicyId}`
GET `/deviceManagement/exchangeOnPremisesPolicy`
GET `/deviceManagement/exchangeOnPremisesPolicy/conditionalAccessSettings`
GET `/deviceManagement/getSuggestedEnrollmentLimit`
GET `/deviceManagement/importedDeviceIdentities`
GET `/deviceManagement/importedDeviceIdentities/{importedDeviceIdentityId}`
GET `/deviceManagement/importedWindowsAutopilotDeviceIdentities`
GET `/deviceManagement/importedWindowsAutopilotDeviceIdentities/{importedWindowsAutopilotDeviceIdentityId}`
GET `/deviceManagement/mobileThreatDefenseConnectors`
GET `/deviceManagement/mobileThreatDefenseConnectors/{mobileThreatDefenseConnectorId}`
GET `/deviceManagement/notificationMessageTemplates`
GET `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}`
GET `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}/localizedNotificationMessages`
GET `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}/localizedNotificationMessages/{localizedNotificationMessageId}`
GET `/deviceManagement/remoteAssistancePartners`
GET `/deviceManagement/remoteAssistancePartners/{remoteAssistancePartnerId}`
GET `/deviceManagement/remoteAssistanceSettings`
GET `/deviceManagement/reports`
GET `/deviceManagement/resourceAccessProfiles`
GET `/deviceManagement/resourceAccessProfiles/{deviceManagementResourceAccessProfileBaseId}`
GET `/deviceManagement/resourceAccessProfiles/{deviceManagementResourceAccessProfileBaseId}/assignments`
GET `/deviceManagement/resourceAccessProfiles/{deviceManagementResourceAccessProfileBaseId}/assignments/{deviceManagementResourceAccessProfileAssignmentId}`
GET `/deviceManagement/termsAndConditions`
GET `/deviceManagement/termsAndConditions/{termsAndConditionsId}`
GET `/deviceManagement/termsAndConditions/{termsAndConditionsId}/acceptanceStatuses`
GET `/deviceManagement/termsAndConditions/{termsAndConditionsId}/acceptanceStatuses/{termsAndConditionsAcceptanceStatusId}`
GET `/deviceManagement/termsAndConditions/{termsAndConditionsId}/acceptanceStatuses/{termsAndConditionsAcceptanceStatusId}/termsAndConditions`
GET `/deviceManagement/termsAndConditions/{termsAndConditionsId}/assignments`
GET `/deviceManagement/termsAndConditions/{termsAndConditionsId}/assignments/{termsAndConditionsAssignmentId}`
GET `/deviceManagement/termsAndConditions/{termsAndConditionsId}/groupAssignments`
GET `/deviceManagement/termsAndConditions/{termsAndConditionsId}/groupAssignments/{termsAndConditionsGroupAssignmentId}`
GET `/deviceManagement/termsAndConditions/{termsAndConditionsId}/groupAssignments/{termsAndConditionsGroupAssignmentId}/termsAndConditions`
GET `/deviceManagement/verifyWindowsEnrollmentAutoDiscovery`
GET `/deviceManagement/windowsAutopilotDeploymentProfiles`
GET `/deviceManagement/windowsAutopilotDeploymentProfiles/{windowsAutopilotDeploymentProfileId}`
GET `/deviceManagement/windowsAutopilotDeviceIdentities`
GET `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}`
GET `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile`
GET `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/assignedDevices`
GET `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/assignedDevices/{windowsAutopilotDeviceIdentityId}`
GET `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/assignments`
GET `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/assignments/{windowsAutopilotDeploymentProfileAssignmentId}`
GET `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/microsoft.graph.activeDirectoryWindowsAutopilotDeploymentProfile/domainJoinConfiguration`
GET `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/intendedDeploymentProfile`
GET `/deviceManagement/windowsAutopilotSettings`
GET `/organization`
GET `/organization/{organizationId}`
GET `/users`
GET `/users/{usersId}`
GET `/users/{usersId}/exportDeviceAndAppManagementData`
GET `/users/{usersId}/getEffectiveDeviceEnrollmentConfigurations`
POST `/deviceAppManagement/sideLoadingKeys`
POST `/deviceAppManagement/vppTokens`
POST `/deviceAppManagement/vppTokens/{vppTokenId}/revokeLicenses`
POST `/deviceAppManagement/vppTokens/{vppTokenId}/syncLicenses`
POST `/deviceAppManagement/vppTokens/syncLicenseCounts`
POST `/deviceManagement/applePushNotificationCertificate/generateApplePushNotificationCertificateSigningRequest`
POST `/deviceManagement/appleUserInitiatedEnrollmentProfiles`
POST `/deviceManagement/appleUserInitiatedEnrollmentProfiles/{appleUserInitiatedEnrollmentProfileId}/assignments`
POST `/deviceManagement/appleUserInitiatedEnrollmentProfiles/{appleUserInitiatedEnrollmentProfileId}/setPriority`
POST `/deviceManagement/complianceManagementPartners`
POST `/deviceManagement/dataSharingConsents`
POST `/deviceManagement/dataSharingConsents/{dataSharingConsentId}/consentToDataSharing`
POST `/deviceManagement/depOnboardingSettings`
POST `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/enrollmentProfiles`
POST `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/enrollmentProfiles/{enrollmentProfileId}/setDefaultProfile`
POST `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/enrollmentProfiles/{enrollmentProfileId}/updateDeviceProfileAssignment`
POST `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/generateEncryptionPublicKey`
POST `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/importedAppleDeviceIdentities`
POST `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/importedAppleDeviceIdentities/importAppleDeviceIdentityList`
POST `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/shareForSchoolDataSyncService`
POST `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/syncWithAppleDeviceEnrollmentProgram`
POST `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/unshareForSchoolDataSyncService`
POST `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/uploadDepToken`
POST `/deviceManagement/derivedCredentials`
POST `/deviceManagement/deviceEnrollmentConfigurations`
POST `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}/assign`
POST `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}/assignments`
POST `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}/setPriority`
POST `/deviceManagement/deviceEnrollmentConfigurations/hasPayloadLinks`
POST `/deviceManagement/deviceManagementPartners`
POST `/deviceManagement/enableUnlicensedAdminstrators`
POST `/deviceManagement/exchangeConnectors`
POST `/deviceManagement/exchangeConnectors/{deviceManagementExchangeConnectorId}/sync`
POST `/deviceManagement/importedDeviceIdentities`
POST `/deviceManagement/importedDeviceIdentities/importDeviceIdentityList`
POST `/deviceManagement/importedDeviceIdentities/searchExistingIdentities`
POST `/deviceManagement/importedWindowsAutopilotDeviceIdentities`
POST `/deviceManagement/importedWindowsAutopilotDeviceIdentities/import`
POST `/deviceManagement/mobileThreatDefenseConnectors`
POST `/deviceManagement/notificationMessageTemplates`
POST `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}/localizedNotificationMessages`
POST `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}/sendTestMessage`
POST `/deviceManagement/remoteAssistancePartners`
POST `/deviceManagement/remoteAssistancePartners/{remoteAssistancePartnerId}/beginOnboarding`
POST `/deviceManagement/remoteAssistancePartners/{remoteAssistancePartnerId}/disconnect`
POST `/deviceManagement/reports/getRemoteAssistanceSessionsReport`
POST `/deviceManagement/resourceAccessProfiles`
POST `/deviceManagement/resourceAccessProfiles/{deviceManagementResourceAccessProfileBaseId}/assign`
POST `/deviceManagement/resourceAccessProfiles/{deviceManagementResourceAccessProfileBaseId}/assignments`
POST `/deviceManagement/resourceAccessProfiles/queryByPlatformType`
POST `/deviceManagement/termsAndConditions`
POST `/deviceManagement/termsAndConditions/{termsAndConditionsId}/acceptanceStatuses`
POST `/deviceManagement/termsAndConditions/{termsAndConditionsId}/assignments`
POST `/deviceManagement/termsAndConditions/{termsAndConditionsId}/groupAssignments`
POST `/deviceManagement/windowsAutopilotDeploymentProfiles`
POST `/deviceManagement/windowsAutopilotDeploymentProfiles/{windowsAutopilotDeploymentProfileId}/assign`
POST `/deviceManagement/windowsAutopilotDeploymentProfiles/hasPayloadLinks`
POST `/deviceManagement/windowsAutopilotDeviceIdentities`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/assignResourceAccountToDevice`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/assignUserToDevice`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/assign`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/assignedDevices`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/assignedDevices/{windowsAutopilotDeviceIdentityId}/assignResourceAccountToDevice`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/assignedDevices/{windowsAutopilotDeviceIdentityId}/assignUserToDevice`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/assignedDevices/{windowsAutopilotDeviceIdentityId}/unassignResourceAccountFromDevice`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/assignedDevices/{windowsAutopilotDeviceIdentityId}/unassignUserFromDevice`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/assignedDevices/{windowsAutopilotDeviceIdentityId}/updateDeviceProperties`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/assignments`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/intendedDeploymentProfile/assign`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/unassignResourceAccountFromDevice`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/unassignUserFromDevice`
POST `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/updateDeviceProperties`
POST `/deviceManagement/windowsAutopilotSettings/sync`
POST `/organization/{organizationId}/setMobileDeviceManagementAuthority`
POST `/users`
PATCH `/deviceAppManagement/sideLoadingKeys/{sideLoadingKeyId}`
PATCH `/deviceAppManagement/vppTokens/{vppTokenId}`
PATCH `/deviceManagement/applePushNotificationCertificate`
PATCH `/deviceManagement/appleUserInitiatedEnrollmentProfiles/{appleUserInitiatedEnrollmentProfileId}`
PATCH `/deviceManagement/appleUserInitiatedEnrollmentProfiles/{appleUserInitiatedEnrollmentProfileId}/assignments/{appleEnrollmentProfileAssignmentId}`
PATCH `/deviceManagement/complianceManagementPartners/{complianceManagementPartnerId}`
PATCH `/deviceManagement/conditionalAccessSettings`
PATCH `/deviceManagement/dataSharingConsents/{dataSharingConsentId}`
PATCH `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}`
PATCH `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/defaultIosEnrollmentProfile`
PATCH `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/defaultMacOsEnrollmentProfile`
PATCH `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/defaultTvOSEnrollmentProfile`
PATCH `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/defaultVisionOSEnrollmentProfile`
PATCH `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/enrollmentProfiles/{enrollmentProfileId}`
PATCH `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/importedAppleDeviceIdentities/{importedAppleDeviceIdentityId}`
PATCH `/deviceManagement/derivedCredentials/{deviceManagementDerivedCredentialSettingsId}`
PATCH `/deviceManagement/deviceConfigurations/{deviceConfigurationId}`
PATCH `/deviceManagement/deviceConfigurations/{deviceConfigurationId}/groupAssignments/{deviceConfigurationGroupAssignmentId}/deviceConfiguration`
PATCH `/deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.windowsDomainJoinConfiguration/networkAccessConfigurations/{deviceConfigurationId}`
PATCH `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}`
PATCH `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}/assignments/{enrollmentConfigurationAssignmentId}`
PATCH `/deviceManagement/deviceManagementPartners/{deviceManagementPartnerId}`
PATCH `/deviceManagement/exchangeConnectors/{deviceManagementExchangeConnectorId}`
PATCH `/deviceManagement/exchangeOnPremisesPolicies/{deviceManagementExchangeOnPremisesPolicyId}`
PATCH `/deviceManagement/exchangeOnPremisesPolicy`
PATCH `/deviceManagement/exchangeOnPremisesPolicy/conditionalAccessSettings`
PATCH `/deviceManagement/importedDeviceIdentities/{importedDeviceIdentityId}`
PATCH `/deviceManagement/mobileThreatDefenseConnectors/{mobileThreatDefenseConnectorId}`
PATCH `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}`
PATCH `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}/localizedNotificationMessages/{localizedNotificationMessageId}`
PATCH `/deviceManagement/remoteAssistancePartners/{remoteAssistancePartnerId}`
PATCH `/deviceManagement/remoteAssistanceSettings`
PATCH `/deviceManagement/reports`
PATCH `/deviceManagement/resourceAccessProfiles/{deviceManagementResourceAccessProfileBaseId}`
PATCH `/deviceManagement/resourceAccessProfiles/{deviceManagementResourceAccessProfileBaseId}/assignments/{deviceManagementResourceAccessProfileAssignmentId}`
PATCH `/deviceManagement/termsAndConditions/{termsAndConditionsId}`
PATCH `/deviceManagement/termsAndConditions/{termsAndConditionsId}/acceptanceStatuses/{termsAndConditionsAcceptanceStatusId}`
PATCH `/deviceManagement/termsAndConditions/{termsAndConditionsId}/acceptanceStatuses/{termsAndConditionsAcceptanceStatusId}/termsAndConditions`
PATCH `/deviceManagement/termsAndConditions/{termsAndConditionsId}/assignments/{termsAndConditionsAssignmentId}`
PATCH `/deviceManagement/termsAndConditions/{termsAndConditionsId}/groupAssignments/{termsAndConditionsGroupAssignmentId}`
PATCH `/deviceManagement/termsAndConditions/{termsAndConditionsId}/groupAssignments/{termsAndConditionsGroupAssignmentId}/termsAndConditions`
PATCH `/deviceManagement/windowsAutopilotDeploymentProfiles/{windowsAutopilotDeploymentProfileId}`
PATCH `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile`
PATCH `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/assignments/{windowsAutopilotDeploymentProfileAssignmentId}`
PATCH `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/microsoft.graph.activeDirectoryWindowsAutopilotDeploymentProfile/domainJoinConfiguration`
PATCH `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/intendedDeploymentProfile`
PATCH `/deviceManagement/windowsAutopilotSettings`
PATCH `/organization/{organizationId}`
PATCH `/users/{usersId}`
DELETE `/deviceAppManagement/sideLoadingKeys/{sideLoadingKeyId}`
DELETE `/deviceAppManagement/vppTokens/{vppTokenId}`
DELETE `/deviceManagement/appleUserInitiatedEnrollmentProfiles/{appleUserInitiatedEnrollmentProfileId}`
DELETE `/deviceManagement/appleUserInitiatedEnrollmentProfiles/{appleUserInitiatedEnrollmentProfileId}/assignments/{appleEnrollmentProfileAssignmentId}`
DELETE `/deviceManagement/complianceManagementPartners/{complianceManagementPartnerId}`
DELETE `/deviceManagement/dataSharingConsents/{dataSharingConsentId}`
DELETE `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}`
DELETE `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/defaultIosEnrollmentProfile`
DELETE `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/defaultMacOsEnrollmentProfile`
DELETE `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/defaultTvOSEnrollmentProfile`
DELETE `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/defaultVisionOSEnrollmentProfile`
DELETE `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/enrollmentProfiles/{enrollmentProfileId}`
DELETE `/deviceManagement/depOnboardingSettings/{depOnboardingSettingId}/importedAppleDeviceIdentities/{importedAppleDeviceIdentityId}`
DELETE `/deviceManagement/derivedCredentials/{deviceManagementDerivedCredentialSettingsId}`
DELETE `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}`
DELETE `/deviceManagement/deviceEnrollmentConfigurations/{deviceEnrollmentConfigurationId}/assignments/{enrollmentConfigurationAssignmentId}`
DELETE `/deviceManagement/deviceManagementPartners/{deviceManagementPartnerId}`
DELETE `/deviceManagement/exchangeConnectors/{deviceManagementExchangeConnectorId}`
DELETE `/deviceManagement/importedDeviceIdentities/{importedDeviceIdentityId}`
DELETE `/deviceManagement/importedWindowsAutopilotDeviceIdentities/{importedWindowsAutopilotDeviceIdentityId}`
DELETE `/deviceManagement/mobileThreatDefenseConnectors/{mobileThreatDefenseConnectorId}`
DELETE `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}`
DELETE `/deviceManagement/notificationMessageTemplates/{notificationMessageTemplateId}/localizedNotificationMessages/{localizedNotificationMessageId}`
DELETE `/deviceManagement/remoteAssistancePartners/{remoteAssistancePartnerId}`
DELETE `/deviceManagement/resourceAccessProfiles/{deviceManagementResourceAccessProfileBaseId}`
DELETE `/deviceManagement/resourceAccessProfiles/{deviceManagementResourceAccessProfileBaseId}/assignments/{deviceManagementResourceAccessProfileAssignmentId}`
DELETE `/deviceManagement/termsAndConditions/{termsAndConditionsId}`
DELETE `/deviceManagement/termsAndConditions/{termsAndConditionsId}/acceptanceStatuses/{termsAndConditionsAcceptanceStatusId}`
DELETE `/deviceManagement/termsAndConditions/{termsAndConditionsId}/acceptanceStatuses/{termsAndConditionsAcceptanceStatusId}/termsAndConditions`
DELETE `/deviceManagement/termsAndConditions/{termsAndConditionsId}/assignments/{termsAndConditionsAssignmentId}`
DELETE `/deviceManagement/termsAndConditions/{termsAndConditionsId}/groupAssignments/{termsAndConditionsGroupAssignmentId}`
DELETE `/deviceManagement/termsAndConditions/{termsAndConditionsId}/groupAssignments/{termsAndConditionsGroupAssignmentId}/termsAndConditions`
DELETE `/deviceManagement/windowsAutopilotDeploymentProfiles/{windowsAutopilotDeploymentProfileId}`
DELETE `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}`
DELETE `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile`
DELETE `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/assignedDevices/{windowsAutopilotDeviceIdentityId}`
DELETE `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/deploymentProfile/assignments/{windowsAutopilotDeploymentProfileAssignmentId}`
DELETE `/deviceManagement/windowsAutopilotDeviceIdentities/{windowsAutopilotDeviceIdentityId}/intendedDeploymentProfile`
DELETE `/users/{usersId}`

Commands
`Disconnect-MgDeviceManagementRemoteAssistancePartner`
`Export-MgUserDeviceAndAppManagementData`
`Get-MgDeviceAppManagementVppToken`
`Get-MgDeviceManagementApplePushNotificationCertificate`
`Get-MgDeviceManagementComplianceManagementPartner`
`Get-MgDeviceManagementConditionalAccessSetting`
`Get-MgDeviceManagementDeviceEnrollmentConfiguration`
`Get-MgDeviceManagementDeviceEnrollmentConfigurationAssignment`
`Get-MgDeviceManagementExchangeConnector`
`Get-MgDeviceManagementImportedWindowsAutopilotDeviceIdentity`
`Get-MgDeviceManagementMobileThreatDefenseConnector`
`Get-MgDeviceManagementNotificationMessageTemplate`
`Get-MgDeviceManagementNotificationMessageTemplateLocalizedNotificationMessage`
`Get-MgDeviceManagementPartner`
`Get-MgDeviceManagementRemoteAssistancePartner`
`Get-MgDeviceManagementTermAndCondition`
`Get-MgDeviceManagementTermAndConditionAcceptanceStatus`
`Get-MgDeviceManagementTermAndConditionAcceptanceStatusTermAndCondition`
`Get-MgDeviceManagementTermAndConditionAssignment`
`Get-MgDeviceManagementWindowsAutopilotDeviceIdentity`
`Get-MgOrganization`
`Get-MgUser`
`Import-MgDeviceManagementImportedWindowsAutopilotDeviceIdentity`
`Invoke-MgBeginDeviceManagementRemoteAssistancePartnerOnboarding`
`Invoke-MgDownloadDeviceManagementApplePushNotificationCertificateApplePushNotificationCertificateSigningRequest`
`Invoke-MgUnassignDeviceManagementWindowsAutopilotDeviceIdentityUserFromDevice`
`New-MgDeviceAppManagementVppToken`
`New-MgDeviceManagementComplianceManagementPartner`
`New-MgDeviceManagementDeviceEnrollmentConfiguration`
`New-MgDeviceManagementDeviceEnrollmentConfigurationAssignment`
`New-MgDeviceManagementExchangeConnector`
`New-MgDeviceManagementImportedWindowsAutopilotDeviceIdentity`
`New-MgDeviceManagementMobileThreatDefenseConnector`
`New-MgDeviceManagementNotificationMessageTemplate`
`New-MgDeviceManagementNotificationMessageTemplateLocalizedNotificationMessage`
`New-MgDeviceManagementPartner`
`New-MgDeviceManagementRemoteAssistancePartner`
`New-MgDeviceManagementTermAndCondition`
`New-MgDeviceManagementTermAndConditionAcceptanceStatus`
`New-MgDeviceManagementTermAndConditionAssignment`
`New-MgDeviceManagementWindowsAutopilotDeviceIdentity`
`New-MgUser`
`Remove-MgDeviceAppManagementVppToken`
`Remove-MgDeviceManagementComplianceManagementPartner`
`Remove-MgDeviceManagementDeviceEnrollmentConfiguration`
`Remove-MgDeviceManagementDeviceEnrollmentConfigurationAssignment`
`Remove-MgDeviceManagementExchangeConnector`
`Remove-MgDeviceManagementImportedWindowsAutopilotDeviceIdentity`
`Remove-MgDeviceManagementMobileThreatDefenseConnector`
`Remove-MgDeviceManagementNotificationMessageTemplate`
`Remove-MgDeviceManagementNotificationMessageTemplateLocalizedNotificationMessage`
`Remove-MgDeviceManagementPartner`
`Remove-MgDeviceManagementRemoteAssistancePartner`
`Remove-MgDeviceManagementTermAndCondition`
`Remove-MgDeviceManagementTermAndConditionAcceptanceStatus`
`Remove-MgDeviceManagementTermAndConditionAssignment`
`Remove-MgDeviceManagementWindowsAutopilotDeviceIdentity`
`Remove-MgUser`
`Send-MgDeviceManagementNotificationMessageTemplateTestMessage`
`Set-MgDeviceManagementDeviceEnrollmentConfiguration`
`Set-MgDeviceManagementDeviceEnrollmentConfigurationPriority`
`Set-MgDeviceManagementWindowsAutopilotDeviceIdentityUserToDevice`
`Set-MgOrganizationMobileDeviceManagementAuthority`
`Sync-MgDeviceAppManagementVppTokenLicense`
`Sync-MgDeviceManagementExchangeConnector`
`Update-MgDeviceAppManagementVppToken`
`Update-MgDeviceManagementApplePushNotificationCertificate`
`Update-MgDeviceManagementComplianceManagementPartner`
`Update-MgDeviceManagementConditionalAccessSetting`
`Update-MgDeviceManagementDeviceEnrollmentConfiguration`
`Update-MgDeviceManagementDeviceEnrollmentConfigurationAssignment`
`Update-MgDeviceManagementExchangeConnector`
`Update-MgDeviceManagementMobileThreatDefenseConnector`
`Update-MgDeviceManagementNotificationMessageTemplate`
`Update-MgDeviceManagementNotificationMessageTemplateLocalizedNotificationMessage`
`Update-MgDeviceManagementPartner`
`Update-MgDeviceManagementRemoteAssistancePartner`
`Update-MgDeviceManagementTermAndCondition`
`Update-MgDeviceManagementTermAndConditionAcceptanceStatus`
`Update-MgDeviceManagementTermAndConditionAssignment`
`Update-MgDeviceManagementWindowsAutopilotDeviceIdentityDeviceProperty`
`Update-MgOrganization`
`Update-MgUser`

Commands
`Export-MgBetaDeviceManagementDepOnboardingSettingEnrollmentProfileMobileConfig`
`Export-MgBetaUserDeviceAndAppManagementData`
`Get-MgBetaDeviceAppManagementVppToken`
`Get-MgBetaDeviceManagementApplePushNotificationCertificate`
`Get-MgBetaDeviceManagementAppleUserInitiatedEnrollmentProfile`
`Get-MgBetaDeviceManagementAppleUserInitiatedEnrollmentProfileAssignment`
`Get-MgBetaDeviceManagementComplianceManagementPartner`
`Get-MgBetaDeviceManagementConditionalAccessSetting`
`Get-MgBetaDeviceManagementDataSharingConsent`
`Get-MgBetaDeviceManagementDepOnboardingSetting`
`Get-MgBetaDeviceManagementDepOnboardingSettingDefaultIoEnrollmentProfile`
`Get-MgBetaDeviceManagementDepOnboardingSettingDefaultMacOSEnrollmentProfile`
`Get-MgBetaDeviceManagementDepOnboardingSettingDefaultTvOSEnrollmentProfile`
`Get-MgBetaDeviceManagementDepOnboardingSettingDefaultVisionOSEnrollmentProfile`
`Get-MgBetaDeviceManagementDepOnboardingSettingEncryptionPublicKey`
`Get-MgBetaDeviceManagementDepOnboardingSettingEnrollmentProfile`
`Get-MgBetaDeviceManagementDepOnboardingSettingImportedAppleDeviceIdentity`
`Get-MgBetaDeviceManagementDerivedCredential`
`Get-MgBetaDeviceManagementDeviceConfiguration`
`Get-MgBetaDeviceManagementDeviceConfigurationGroupAssignmentDeviceConfiguration`
`Get-MgBetaDeviceManagementDeviceEnrollmentConfiguration`
`Get-MgBetaDeviceManagementDeviceEnrollmentConfigurationAssignment`
`Get-MgBetaDeviceManagementExchangeConnector`
`Get-MgBetaDeviceManagementExchangeOnPremisePolicy`
`Get-MgBetaDeviceManagementImportedDeviceIdentity`
`Get-MgBetaDeviceManagementImportedWindowsAutopilotDeviceIdentity`
`Get-MgBetaDeviceManagementMobileThreatDefenseConnector`
`Get-MgBetaDeviceManagementNotificationMessageTemplate`
`Get-MgBetaDeviceManagementNotificationMessageTemplateLocalizedNotificationMessage`
`Get-MgBetaDeviceManagementPartner`
`Get-MgBetaDeviceManagementRemoteAssistancePartner`
`Get-MgBetaDeviceManagementReport`
`Get-MgBetaDeviceManagementReportRemoteAssistanceSessionReport`
`Get-MgBetaDeviceManagementResourceAccessProfile`
`Get-MgBetaDeviceManagementResourceAccessProfileAssignment`
`Get-MgBetaDeviceManagementTermAndCondition`
`Get-MgBetaDeviceManagementTermAndConditionAcceptanceStatus`
`Get-MgBetaDeviceManagementTermAndConditionAcceptanceStatusTermAndCondition`
`Get-MgBetaDeviceManagementTermAndConditionAssignment`
`Get-MgBetaDeviceManagementTermAndConditionGroupAssignment`
`Get-MgBetaDeviceManagementTermAndConditionGroupAssignmentTermAndCondition`
`Get-MgBetaDeviceManagementWindowsAutopilotDeploymentProfile`
`Get-MgBetaDeviceManagementWindowsAutopilotDeviceIdentity`
`Get-MgBetaDeviceManagementWindowsAutopilotDeviceIdentityDeploymentProfile`
`Get-MgBetaDeviceManagementWindowsAutopilotDeviceIdentityIntendedDeploymentProfile`
`Get-MgBetaDeviceManagementWindowsAutopilotSetting`
`Get-MgBetaOrganization`
`Get-MgBetaUser`
`Get-MgBetaUserEffectiveDeviceEnrollmentConfiguration`
`Import-MgBetaDeviceManagementDepOnboardingSettingImportedAppleDeviceIdentityAppleDeviceIdentityList`
`Import-MgBetaDeviceManagementImportedDeviceIdentityList`
`Import-MgBetaDeviceManagementImportedWindowsAutopilotDeviceIdentity`
`Invoke-MgBetaAccountDeviceManagementWindowsAutopilotDeviceIdentity`
`Invoke-MgBetaConsentDeviceManagementDataSharingConsentToDataSharing`
`Invoke-MgBetaGraphDeviceManagementDepOnboardingSetting`
`Invoke-MgBetaHasDeviceManagementDeviceEnrollmentConfigurationPayloadLink`
`Invoke-MgBetaHasDeviceManagementWindowsAutopilotDeploymentProfilePayloadLink`
`Invoke-MgBetaQueryDeviceManagementResourceAccessProfileByPlatformType`
`Invoke-MgBetaShareDeviceManagementDepOnboardingSettingForSchoolDataSyncService`
`Invoke-MgBetaUnassignDeviceManagementWindowsAutopilotDeviceIdentityUserFromDevice`
`Invoke-MgBetaUploadDeviceManagementDepOnboardingSettingDepToken`
`New-MgBetaDeviceAppManagementVppToken`
`New-MgBetaDeviceManagementAppleUserInitiatedEnrollmentProfile`
`New-MgBetaDeviceManagementAppleUserInitiatedEnrollmentProfileAssignment`
`New-MgBetaDeviceManagementComplianceManagementPartner`
`New-MgBetaDeviceManagementDataSharingConsent`
`New-MgBetaDeviceManagementDepOnboardingSetting`
`New-MgBetaDeviceManagementDepOnboardingSettingEncryptionPublicKey`
`New-MgBetaDeviceManagementDepOnboardingSettingEnrollmentProfile`
`New-MgBetaDeviceManagementDepOnboardingSettingImportedAppleDeviceIdentity`
`New-MgBetaDeviceManagementDerivedCredential`
`New-MgBetaDeviceManagementDeviceEnrollmentConfiguration`
`New-MgBetaDeviceManagementDeviceEnrollmentConfigurationAssignment`
`New-MgBetaDeviceManagementExchangeConnector`
`New-MgBetaDeviceManagementImportedDeviceIdentity`
`New-MgBetaDeviceManagementImportedWindowsAutopilotDeviceIdentity`
`New-MgBetaDeviceManagementMobileThreatDefenseConnector`
`New-MgBetaDeviceManagementNotificationMessageTemplate`
`New-MgBetaDeviceManagementNotificationMessageTemplateLocalizedNotificationMessage`
`New-MgBetaDeviceManagementPartner`
`New-MgBetaDeviceManagementRemoteAssistancePartner`
`New-MgBetaDeviceManagementResourceAccessProfile`
`New-MgBetaDeviceManagementResourceAccessProfileAssignment`
`New-MgBetaDeviceManagementTermAndCondition`
`New-MgBetaDeviceManagementTermAndConditionAcceptanceStatus`
`New-MgBetaDeviceManagementTermAndConditionAssignment`
`New-MgBetaDeviceManagementTermAndConditionGroupAssignment`
`New-MgBetaDeviceManagementWindowsAutopilotDeploymentProfile`
`New-MgBetaDeviceManagementWindowsAutopilotDeviceIdentity`
`New-MgBetaUser`
`Remove-MgBetaDeviceAppManagementVppToken`
`Remove-MgBetaDeviceManagementAppleUserInitiatedEnrollmentProfile`
`Remove-MgBetaDeviceManagementAppleUserInitiatedEnrollmentProfileAssignment`
`Remove-MgBetaDeviceManagementComplianceManagementPartner`
`Remove-MgBetaDeviceManagementDataSharingConsent`
`Remove-MgBetaDeviceManagementDepOnboardingSetting`
`Remove-MgBetaDeviceManagementDepOnboardingSettingEnrollmentProfile`
`Remove-MgBetaDeviceManagementDepOnboardingSettingImportedAppleDeviceIdentity`
`Remove-MgBetaDeviceManagementDerivedCredential`
`Remove-MgBetaDeviceManagementDeviceEnrollmentConfiguration`
`Remove-MgBetaDeviceManagementDeviceEnrollmentConfigurationAssignment`
`Remove-MgBetaDeviceManagementExchangeConnector`
`Remove-MgBetaDeviceManagementImportedDeviceIdentity`
`Remove-MgBetaDeviceManagementImportedWindowsAutopilotDeviceIdentity`
`Remove-MgBetaDeviceManagementMobileThreatDefenseConnector`
`Remove-MgBetaDeviceManagementNotificationMessageTemplate`
`Remove-MgBetaDeviceManagementNotificationMessageTemplateLocalizedNotificationMessage`
`Remove-MgBetaDeviceManagementPartner`
`Remove-MgBetaDeviceManagementRemoteAssistancePartner`
`Remove-MgBetaDeviceManagementResourceAccessProfile`
`Remove-MgBetaDeviceManagementResourceAccessProfileAssignment`
`Remove-MgBetaDeviceManagementTermAndCondition`
`Remove-MgBetaDeviceManagementTermAndConditionAcceptanceStatus`
`Remove-MgBetaDeviceManagementTermAndConditionAssignment`
`Remove-MgBetaDeviceManagementTermAndConditionGroupAssignment`
`Remove-MgBetaDeviceManagementWindowsAutopilotDeploymentProfile`
`Remove-MgBetaDeviceManagementWindowsAutopilotDeviceIdentity`
`Remove-MgBetaUser`
`Revoke-MgBetaDeviceAppManagementVppTokenLicense`
`Search-MgBetaDeviceManagementImportedDeviceIdentityExistingIdentity`
`Send-MgBetaDeviceManagementNotificationMessageTemplateTestMessage`
`Set-MgBetaDeviceManagementAppleUserInitiatedEnrollmentProfilePriority`
`Set-MgBetaDeviceManagementDepOnboardingSettingEnrollmentProfileDefaultProfile`
`Set-MgBetaDeviceManagementDeviceEnrollmentConfiguration`
`Set-MgBetaDeviceManagementDeviceEnrollmentConfigurationPriority`
`Set-MgBetaDeviceManagementResourceAccessProfile`
`Set-MgBetaDeviceManagementWindowsAutopilotDeploymentProfile`
`Set-MgBetaDeviceManagementWindowsAutopilotDeviceIdentityResourceAccountToDevice`
`Set-MgBetaDeviceManagementWindowsAutopilotDeviceIdentityUserToDevice`
`Set-MgBetaOrganizationMobileDeviceManagementAuthority`
`Sync-MgBetaDeviceAppManagementVppTokenLicense`
`Sync-MgBetaDeviceAppManagementVppTokenLicenseCount`
`Sync-MgBetaDeviceManagementDepOnboardingSettingWithAppleDeviceEnrollmentProgram`
`Sync-MgBetaDeviceManagementWindowsAutopilotSetting`
`Update-MgBetaDeviceAppManagementVppToken`
`Update-MgBetaDeviceManagementApplePushNotificationCertificate`
`Update-MgBetaDeviceManagementAppleUserInitiatedEnrollmentProfile`
`Update-MgBetaDeviceManagementAppleUserInitiatedEnrollmentProfileAssignment`
`Update-MgBetaDeviceManagementComplianceManagementPartner`
`Update-MgBetaDeviceManagementConditionalAccessSetting`
`Update-MgBetaDeviceManagementDataSharingConsent`
`Update-MgBetaDeviceManagementDepOnboardingSetting`
`Update-MgBetaDeviceManagementDepOnboardingSettingEnrollmentProfile`
`Update-MgBetaDeviceManagementDepOnboardingSettingEnrollmentProfileDeviceProfileAssignment`
`Update-MgBetaDeviceManagementDepOnboardingSettingImportedAppleDeviceIdentity`
`Update-MgBetaDeviceManagementDerivedCredential`
`Update-MgBetaDeviceManagementDeviceConfiguration`
`Update-MgBetaDeviceManagementDeviceEnrollmentConfiguration`
`Update-MgBetaDeviceManagementDeviceEnrollmentConfigurationAssignment`
`Update-MgBetaDeviceManagementExchangeConnector`
`Update-MgBetaDeviceManagementExchangeOnPremisePolicy`
`Update-MgBetaDeviceManagementImportedDeviceIdentity`
`Update-MgBetaDeviceManagementMobileThreatDefenseConnector`
`Update-MgBetaDeviceManagementNotificationMessageTemplate`
`Update-MgBetaDeviceManagementNotificationMessageTemplateLocalizedNotificationMessage`
`Update-MgBetaDeviceManagementPartner`
`Update-MgBetaDeviceManagementRemoteAssistancePartner`
`Update-MgBetaDeviceManagementReport`
`Update-MgBetaDeviceManagementResourceAccessProfile`
`Update-MgBetaDeviceManagementResourceAccessProfileAssignment`
`Update-MgBetaDeviceManagementTermAndCondition`
`Update-MgBetaDeviceManagementTermAndConditionAcceptanceStatus`
`Update-MgBetaDeviceManagementTermAndConditionAssignment`
`Update-MgBetaDeviceManagementTermAndConditionGroupAssignment`
`Update-MgBetaDeviceManagementWindowsAutopilotDeploymentProfile`
`Update-MgBetaDeviceManagementWindowsAutopilotDeviceIdentityDeviceProperty`
`Update-MgBetaDeviceManagementWindowsAutopilotSetting`
`Update-MgBetaOrganization`
`Update-MgBetaUser`

Code Examples

C# / .NET SDK

// Install: dotnet add package Microsoft.Graph
// Install: dotnet add package Azure.Identity
using Microsoft.Graph;
using Azure.Identity;

// Delegated permissions - interactive user sign-in
var scopes = new[] { "DeviceManagementServiceConfig.ReadWrite.All" };
var options = new InteractiveBrowserCredentialOptions
{
    ClientId = "YOUR_CLIENT_ID",
    TenantId = "YOUR_TENANT_ID",
    RedirectUri = new Uri("http://localhost")
};
var credential = new InteractiveBrowserCredential(options);
var graphClient = new GraphServiceClient(credential, scopes);

// Example: GET /me
var result = await graphClient.Me.GetAsync();
Console.WriteLine($"User: {result?.DisplayName}");

// Application permissions - daemon/service app
var tenantId = "YOUR_TENANT_ID";
var clientId = "YOUR_CLIENT_ID";
var clientSecret = "YOUR_CLIENT_SECRET";

var credential = new ClientSecretCredential(tenantId, clientId, clientSecret);
var graphClient = new GraphServiceClient(credential);

// Example: GET /users/{user-id}
var users = await graphClient.Users.GetAsync();
foreach (var user in users?.Value ?? [])
{
    Console.WriteLine($"User: {user.DisplayName}");
}

JavaScript / TypeScript

// npm install @azure/msal-browser @microsoft/microsoft-graph-client
import { PublicClientApplication } from "@azure/msal-browser";
import { Client } from "@microsoft/microsoft-graph-client";
import { AuthCodeMSALBrowserAuthenticationProvider } from 
    "@microsoft/microsoft-graph-client/authProviders/authCodeMsalBrowser";

const msalConfig = {
    auth: {
        clientId: "YOUR_CLIENT_ID",
        authority: "https://login.microsoftonline.com/YOUR_TENANT_ID"
    }
};

const pca = new PublicClientApplication(msalConfig);
await pca.initialize();

// Delegated: Login with required scope
const loginResponse = await pca.loginPopup({
    scopes: ["DeviceManagementServiceConfig.ReadWrite.All"]
});

const authProvider = new AuthCodeMSALBrowserAuthenticationProvider(pca, {
    account: loginResponse.account,
    scopes: ["DeviceManagementServiceConfig.ReadWrite.All"],
    interactionType: "popup"
});

const graphClient = Client.initWithMiddleware({ authProvider });

// Example: GET /me
const result = await graphClient.api("/me").get();
console.log(result);

// Application: Use client credentials (Node.js backend only)
// npm install @azure/identity @microsoft/microsoft-graph-client
import { ClientSecretCredential } from "@azure/identity";
import { TokenCredentialAuthenticationProvider } from 
    "@microsoft/microsoft-graph-client/authProviders/azureTokenCredentials";

const credential = new ClientSecretCredential(
    "YOUR_TENANT_ID",
    "YOUR_CLIENT_ID", 
    "YOUR_CLIENT_SECRET"
);

const authProvider = new TokenCredentialAuthenticationProvider(credential, {
    scopes: ["https://graph.microsoft.com/.default"]
});

const graphClient = Client.initWithMiddleware({ authProvider });
const result = await graphClient.api("/users").get();
console.log(result);

PowerShell

# Install Microsoft Graph PowerShell module
Install-Module Microsoft.Graph -Scope CurrentUser

# Delegated access - interactive sign-in
Connect-MgGraph -Scopes "DeviceManagementServiceConfig.ReadWrite.All"

# Verify connection
Get-MgContext | Select-Object Account, TenantId, Scopes

# Example: GET /me
$result = Invoke-MgGraphRequest -Method GET -Uri "https://graph.microsoft.com/v1.0/me"
$result | ConvertTo-Json -Depth 5

# Application access with certificate
$params = @{
    ClientId = "YOUR_CLIENT_ID"
    TenantId = "YOUR_TENANT_ID"
    CertificateThumbprint = "YOUR_CERT_THUMBPRINT"
}
Connect-MgGraph @params

# Or with client secret (not recommended for production)
# Connect-MgGraph -ClientSecretCredential $credential

# Example: GET /users
$result = Invoke-MgGraphRequest -Method GET -Uri "https://graph.microsoft.com/v1.0/users"
$result | ConvertTo-Json -Depth 5

# Always disconnect when done
Disconnect-MgGraph

Python

# pip install msgraph-sdk azure-identity
from azure.identity import InteractiveBrowserCredential, ClientSecretCredential
from msgraph import GraphServiceClient
import asyncio

# Delegated permissions - interactive browser sign-in
credential = InteractiveBrowserCredential(
    client_id="YOUR_CLIENT_ID",
    tenant_id="YOUR_TENANT_ID"
)
scopes = ["DeviceManagementServiceConfig.ReadWrite.All"]
client = GraphServiceClient(credential, scopes)

async def get_data():
    # Example: GET /me
    result = await client.me.get()
    print(f"User: {result.display_name}")
    return result

asyncio.run(get_data())

# Application permissions - client credentials
credential = ClientSecretCredential(
    tenant_id="YOUR_TENANT_ID",
    client_id="YOUR_CLIENT_ID",
    client_secret="YOUR_CLIENT_SECRET"
)
scopes = ["https://graph.microsoft.com/.default"]
client = GraphServiceClient(credential, scopes)

async def get_users():
    # Example: GET /users
    result = await client.users.get()
    for user in result.value:
        print(f"User: {user.display_name}")
    return result

asyncio.run(get_users())

App Registration

Navigate to Azure Portal

Go to App registrations in Microsoft Entra admin center

Add API Permission

Select your app → API permissions → Add a permission → Microsoft Graph

Select Permission Type

Choose Application permissions or Delegated permissions and search for DeviceManagementServiceConfig.ReadWrite.All

Grant Admin Consent

Application permissions always require admin consent. Click "Grant admin consent" in the Azure portal.