Does Directory.ReadWrite.All require admin consent?

Yes, Application permissions always require admin consent. An administrator must grant consent in the Azure portal.

How do I add Directory.ReadWrite.All to my app registration?

Go to Azure Portal > App registrations > Your app > API permissions > Add permission > Microsoft Graph, then search for Directory.ReadWrite.All and select it.

Directory.ReadWrite.All Permission - Microsoft Graph API

Permission Details

Application Permission

Read and write directory data

Allows the app to read and write data in your organization's directory, such as users, and groups, without a signed-in user. Does not allow user or group deletion.

Permission ID: 19dbc75e-c2e2-444c-a770-ec69d8559fc7

Delegated Permission

Read and write directory data

Allows the app to read and write data in your organization's directory, such as users, and groups. It does not allow the app to delete users or groups, or reset user passwords.

Permission ID: c5366453-9fb0-48a5-a156-24f0c49a4b84

Properties

Property	Type	Description
`id`	`string`	The unique identifier for an entity. Read-only.
`contactInsights`	`object`	Contains the properties that are configured by an administrator as a tenant-level privacy control whether to identify duplicate contacts among a user's contacts list and suggest the user to merge those contacts to have a cleaner contacts list. List contactInsights returns the settings to display or return contact insights in an organization.
`microsoftApplicationDataAccess`	`object`
`peopleInsights`	`object`	Contains the properties that are configured by an administrator for the visibility of a list of people relevant and working with a user in Microsoft 365. List peopleInsights returns the settings to display or return people insights in an organization.
`itemInsights`	`object`	Contains the properties that are configured by an administrator for the visibility of Microsoft Graph-derived insights, between a user and other items in Microsoft 365, such as documents or sites. List itemInsights returns the settings to display or return item insights in an organization.

Relationships

Relationship	Type	Description
`administrativeUnits`	`administrativeUnit collection`	Conceptual container for user and group directory objects.
`attributeSets`	`attributeSet collection`	Group of related custom security attribute definitions.
`customSecurityAttributeDefinitions`	`customSecurityAttributeDefinition collection`	Schema of a custom security attribute.
`deletedItems`	`directoryObject collection`	Recently deleted items. Read-only. Nullable.
`federationConfigurations`	`identityProviderBase collection`	Configure domain federation with organizations whose identity provider (IdP) supports either the SAML or WS-Fed protocol.
`onPremisesSynchronization`	`onPremisesDirectorySynchronization collection`	A container for on-premises directory synchronization functionalities.

Graph Methods

Delegated access App-only access

Methods
GET `/appCatalogs/teamsApps`
GET `/applications`
GET `/applications(appId='{appId}')`
GET `/applications(appId='{appId}')/extensionProperties`
GET `/applications(appId='{appId}')/owners`
GET `/applications/{application ObjectId}/extensionProperties`
GET `/applications/{applicationObjectId}`
GET `/applications/{id}/owners`
GET `/applications/delta`
GET `/contacts`
GET `/contacts/{id}`
GET `/contacts/{id}/directReports`
GET `/contacts/{id}/manager`
GET `/contacts/{id}/memberOf`
GET `/contacts/delta`
GET `/contracts`
GET `/contracts/{id}`
GET `/devices`
GET `/devices(deviceId='{deviceId}')`
GET `/devices(deviceId='{deviceId}')/memberOf`
GET `/devices(deviceId='{deviceId}')/registeredOwners`
GET `/devices(deviceId='{deviceId}')/registeredUsers`
GET `/devices(deviceId='{deviceId}')/transitiveMemberOf`
GET `/devices/{id \| userPrincipalName}/transitiveMemberOf`
GET `/devices/{id}`
GET `/devices/{id}/memberOf`
GET `/devices/{id}/registeredOwners`
GET `/devices/{id}/registeredUsers`
GET `/directory`
GET `/directory/administrativeUnits`
GET `/directory/administrativeUnits/{administrativeUnit-id}`
GET `/directory/administrativeUnits/{administrativeUnit-id}/extensions`
GET `/directory/administrativeUnits/{administrativeUnit-id}/extensions/{extension-id}`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/{directoryObject-id}/graph.application`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/{directoryObject-id}/graph.device`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/{directoryObject-id}/graph.group`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/{directoryObject-id}/graph.orgContact`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/{directoryObject-id}/graph.servicePrincipal`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/{directoryObject-id}/graph.user`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/graph.application`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/graph.device`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/graph.group`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/graph.orgContact`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/graph.servicePrincipal`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/graph.user`
GET `/directory/administrativeUnits/{administrativeUnit-id}/scopedRoleMembers`
GET `/directory/administrativeUnits/{administrativeUnit-id}/scopedRoleMembers/{scopedRoleMembership-id}`
GET `/directory/administrativeUnits/{id}`
GET `/directory/administrativeUnits/{id}/members`
GET `/directory/administrativeUnits/{id}/members/{id}`
GET `/directory/administrativeUnits/{id}/members/$ref`
GET `/directory/administrativeUnits/{id}/scopedRoleMembers`
GET `/directory/administrativeUnits/{id}/scopedRoleMembers/{id}`
GET `/directory/attributeSets`
GET `/directory/attributeSets/{attributeSet-id}`
GET `/directory/customSecurityAttributeDefinitions`
GET `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}`
GET `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}/allowedValues`
GET `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}/allowedValues/{allowedValue-id}`
GET `/directory/federationConfigurations`
GET `/directory/federationConfigurations/{identityProviderBase-id}`
GET `/directory/onPremisesSynchronization`
GET `/directory/onPremisesSynchronization/{onPremisesDirectorySynchronization-id}`
GET `/directory/subscriptions`
GET `/directory/subscriptions/{companySubscription-id}`
GET `/directoryRoles`
GET `/directoryRoles(roleTemplateId='{roleTemplateId}')`
GET `/directoryRoles(roleTemplateId='{roleTemplateId}')/members`
GET `/directoryRoles(roleTemplateId='{roleTemplateId}')/scopedMembers`
GET `/directoryRoles/{role-id}`
GET `/directoryRoles/{role-id}/members`
GET `/directoryroles/{role-id}/scopedMembers`
GET `/directoryRoles/delta`
GET `/directoryRoleTemplates`
GET `/directoryRoleTemplates/{id}`
GET `/groupLifecyclePolicies`
GET `/groupLifecyclePolicies/{id}`
GET `/groups`
GET `/groups/{id}`
GET `/groups/{id}/appRoleAssignments`
GET `/groups/{id}/groupLifecyclePolicies`
GET `/groups/{id}/memberOf`
GET `/groups/{id}/transitiveMemberOf`
GET `/groups/delta`
GET `/groupSettings`
GET `/groupSettings/{groupSettingId}`
GET `/groupSettingTemplates`
GET `/groupSettingTemplates/{id}`
GET `/me`
GET `/me/createdObjects`
GET `/me/directReports`
GET `/me/joinedTeams`
GET `/me/licenseDetails`
GET `/me/manager`
GET `/me/memberOf`
GET `/me/ownedDevices`
GET `/me/ownedObjects`
GET `/me/registeredDevices`
GET `/me/transitiveMemberOf`
GET `/oauth2PermissionGrants`
GET `/oauth2PermissionGrants/{id}`
GET `/oauth2PermissionGrants/delta`
GET `/organization`
GET `/organization/{organizationId}`
GET `/policies/adminConsentRequestPolicy`
GET `/policies/featureRolloutPolicies`
GET `/policies/featureRolloutPolicies/{id}`
GET `/roleManagement/directory/roleAssignments`
GET `/roleManagement/directory/roleAssignments/{id}`
GET `/roleManagement/directory/roleDefinitions`
GET `/roleManagement/directory/roleDefinitions/{id}`
GET `/servicePrincipals`
GET `/servicePrincipals(appId='{appId}')`
GET `/servicePrincipals(appId='{appId}')/appRoleAssignedTo`
GET `/servicePrincipals(appId='{appId}')/appRoleAssignments`
GET `/servicePrincipals(appId='{appId}')/createdObjects`
GET `/servicePrincipals(appId='{appId}')/memberOf`
GET `/servicePrincipals(appId='{appId}')/oauth2PermissionGrants`
GET `/servicePrincipals(appId='{appId}')/ownedObjects`
GET `/servicePrincipals(appId='{appId}')/owners`
GET `/servicePrincipals(appId='{appId}')/transitiveMemberOf`
GET `/servicePrincipals/{id}`
GET `/servicePrincipals/{id}/appRoleAssignedTo`
GET `/servicePrincipals/{id}/appRoleAssignments`
GET `/servicePrincipals/{id}/createdObjects`
GET `/servicePrincipals/{id}/memberOf`
GET `/servicePrincipals/{id}/oauth2PermissionGrants`
GET `/servicePrincipals/{id}/ownedObjects`
GET `/servicePrincipals/{id}/owners`
GET `/servicePrincipals/{id}/transitiveMemberOf`
GET `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration`
GET `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration/targetDeviceGroups`
GET `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration/targetDeviceGroups/{targetDeviceGroupId}`
GET `/servicePrincipals/delta`
GET `/subscribedSkus`
GET `/subscribedSkus/{id}`
GET `/teams/{id}/channels/{id}/tabs`
GET `/teams/{id}/installedApps/{id}`
GET `/teams/{team-id}`
GET `/teams/{team-id}/channels`
GET `/teams/{team-id}/channels/{channel-id}`
GET `/teams/{team-id}/channels/{channel-id}/tabs/{tab-id}`
GET `/teams/{team-id}/installedApps`
GET `/users`
GET `/users/{id \| user-principal-name}/joinedTeams`
GET `/users/{id \| userPrincipalName}`
GET `/users/{id \| userPrincipalName}/createdObjects`
GET `/users/{id \| userPrincipalName}/directReports`
GET `/users/{id \| userPrincipalName}/manager`
GET `/users/{id \| userPrincipalName}/ownedDevices`
GET `/users/{id \| userPrincipalName}/ownedObjects`
GET `/users/{id \| userPrincipalName}/registeredDevices`
GET `/users/{id}/licenseDetails`
GET `/users/{user-id}/licenseDetails/getTeamsLicensingDetails`
GET `/users/delta`
POST `/appCatalogs/teamsApps`
POST `/appCatalogs/teamsApps/{id}/appDefinitions`
POST `/applications(appId='{appId}')/addKey`
POST `/applications(appId='{appId}')/addPassword`
POST `/applications(appId='{appId}')/extensionProperties`
POST `/applications(appId='{appId}')/owners/$ref`
POST `/applications(appId='{appId}')/removeKey`
POST `/applications(appId='{appId}')/removePassword`
POST `/applications/{application ObjectId}/extensionProperties`
POST `/applications/{id}/addKey`
POST `/applications/{id}/addPassword`
POST `/applications/{id}/owners/$ref`
POST `/applications/{id}/removeKey`
POST `/applications/{id}/removePassword`
POST `/applicationTemplates/{applicationTemplate-id}/instantiate`
POST `/directory/administrativeUnits`
POST `/directory/administrativeUnits/{administrativeUnit-id}/extensions`
POST `/directory/administrativeUnits/{administrativeUnit-id}/members`
POST `/directory/administrativeUnits/{administrativeUnit-id}/members/{directoryObject-id}/graph.user`
POST `/directory/administrativeUnits/{administrativeUnit-id}/scopedRoleMembers`
POST `/directory/administrativeUnits/{id}/members/$ref`
POST `/directory/attributeSets`
POST `/directory/customSecurityAttributeDefinitions`
POST `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}/allowedValues`
POST `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}/allowedValues/{allowedValue-id}`
POST `/directory/federationConfigurations`
POST `/directory/onPremisesSynchronization`
POST `/directory/subscriptions`
POST `/directoryObjects/{id}/checkMemberGroups`
POST `/directoryObjects/{id}/checkMemberObjects`
POST `/directoryObjects/{id}/getMemberGroups`
POST `/directoryObjects/{id}/getMemberObjects`
POST `/directoryObjects/validateProperties`
POST `/groupLifecyclePolicies`
POST `/groupLifecyclePolicies/{id}/addGroup`
POST `/groupLifecyclePolicies/{id}/removeGroup`
POST `/groups`
POST `/groups/{id}/assignLicense`
POST `/groups/{id}/owners/$ref`
POST `/groups/{id}/renew`
POST `/groups/{id}/retryServiceProvisioning`
POST `/groupSettings`
POST `/invitations`
POST `/me/revokeSignInSessions`
POST `/oauth2PermissionGrants`
POST `/orgContacts/{id}/retryServiceProvisioning`
POST `/policies/featureRolloutPolicies`
POST `/policies/featureRolloutPolicies/{id}/appliesTo/$ref`
POST `/roleManagement/directory/roleDefinitions`
POST `/schemaExtensions`
POST `/servicePrincipals`
POST `/servicePrincipals(appId='{appId}')/addKey`
POST `/servicePrincipals(appId='{appId}')/addPassword`
POST `/servicePrincipals(appId='{appId}')/addTokenSigningCertificate`
POST `/servicePrincipals(appId='{appId}')/owners/$ref`
POST `/servicePrincipals(appId='{appId}')/removeKey`
POST `/servicePrincipals(appId='{appId}')/removePassword`
POST `/serviceprincipals/{id}/addKey`
POST `/servicePrincipals/{id}/addPassword`
POST `/servicePrincipals/{id}/addTokenSigningCertificate`
POST `/servicePrincipals/{id}/owners/$ref`
POST `/serviceprincipals/{id}/removeKey`
POST `/servicePrincipals/{id}/removePassword`
POST `/servicePrincipals/{id}/synchronization/jobs/{jobId}/schema/directories/{directoryId}/discover`
POST `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration`
POST `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration/targetDeviceGroups`
POST `/teams`
POST `/teams/{id}/archive`
POST `/teams/{id}/clone`
POST `/teams/{id}/unarchive`
POST `/teams/{team-id}/channels`
POST `/teams/{team-id}/channels/{channel-id}/tabs`
POST `/teams/{team-id}/installedApps`
POST `/teams/{team-id}/installedApps/{app-installation-id}/upgrade`
POST `/users`
POST `/users/{id \| userPrincipalName}/assignLicense`
POST `/users/{id \| userPrincipalName}/revokeSignInSessions`
POST `/users/{id}/reprocessLicenseAssignment`
POST `/users/{id}/retryServiceProvisioning`
POST `/users/{id}/sponsors/$ref`
PATCH `/devices(deviceId='{deviceId}')`
PATCH `/devices/{id}`
PATCH `/directory`
PATCH `/directory/administrativeUnits/{administrativeUnit-id}`
PATCH `/directory/administrativeUnits/{administrativeUnit-id}/extensions/{extension-id}`
PATCH `/directory/administrativeUnits/{administrativeUnit-id}/scopedRoleMembers/{scopedRoleMembership-id}`
PATCH `/directory/attributeSets/{attributeSet-id}`
PATCH `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}`
PATCH `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}/allowedValues/{allowedValue-id}`
PATCH `/directory/federationConfigurations/{identityProviderBase-id}`
PATCH `/directory/onPremisesSynchronization/{onPremisesDirectorySynchronization-id}`
PATCH `/directory/subscriptions/{companySubscription-id}`
PATCH `/groupLifecyclePolicies/{id}`
PATCH `/groups(uniqueName='uniqueName')`
PATCH `/groups/{id}`
PATCH `/groupSettings/{groupSettingId}`
PATCH `/oauth2PermissionGrants/{id}`
PATCH `/policies/featureRolloutPolicies/{id}`
PATCH `/roleManagement/directory/roleDefinitions/{id}`
PATCH `/schemaExtensions/{id}`
PATCH `/servicePrincipals(appId='{appId}')`
PATCH `/servicePrincipals(appId='appId')`
PATCH `/servicePrincipals/{id}`
PATCH `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration`
PATCH `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration/targetDeviceGroups/{targetDeviceGroupId}`
PATCH `/teams/{id}/channels/{id}/members/{id}`
PATCH `/teams/{team-id}`
PATCH `/teams/{team-id}/channels/{channel-id}`
PATCH `/teams/{team-id}/channels/{channel-id}/members/{membership-id}`
PATCH `/teams/{team-id}/channels/{channel-id}/tabs/{tab-id}`
PATCH `/users/{id \| userPrincipalName}`
PUT `/groups/{id}/team`
PUT `/policies/adminConsentRequestPolicy`
PUT `/users/{id}/manager/$ref`
DELETE `/appCatalogs/teamsApps/{id}`
DELETE `/applications(appId='{appId}')/extensionProperties/{extensionPropertyId}`
DELETE `/applications(appId='{appId}')/owners/{id}/$ref`
DELETE `/applications/{application ObjectId}/extensionProperties/{extensionPropertyId}`
DELETE `/applications/{id}/owners/{id}/$ref`
DELETE `/directory/administrativeUnits/{administrativeUnit-id}`
DELETE `/directory/administrativeUnits/{administrativeUnit-id}/extensions/{extension-id}`
DELETE `/directory/administrativeUnits/{administrativeUnit-id}/members`
DELETE `/directory/administrativeUnits/{administrativeUnit-id}/members/{directoryObject-id}/graph.user`
DELETE `/directory/administrativeUnits/{administrativeUnit-id}/scopedRoleMembers/{scopedRoleMembership-id}`
DELETE `/directory/attributeSets/{attributeSet-id}`
DELETE `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}`
DELETE `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}/allowedValues/{allowedValue-id}`
DELETE `/directory/federationConfigurations/{identityProviderBase-id}`
DELETE `/directory/onPremisesSynchronization/{onPremisesDirectorySynchronization-id}`
DELETE `/directory/subscriptions/{companySubscription-id}`
DELETE `/groupLifecyclePolicies/{id}`
DELETE `/groups/{id}/members/{id}/$ref`
DELETE `/groups/{id}/owners/{id}/$ref`
DELETE `/groupSettings/{groupSettingId}`
DELETE `/oAuth2PermissionGrants/{id}`
DELETE `/policies/featureRolloutPolicies/{id}`
DELETE `/policies/featureRolloutPolicies/{policyId}/appliesTo/{directoryObjectId}/$ref`
DELETE `/roleManagement/directory/roleDefinitions/{id}`
DELETE `/schemaExtensions/{id}`
DELETE `/servicePrincipals(appId='{appId}')`
DELETE `/servicePrincipals(appId='{appId}')/owners/{id}/$ref`
DELETE `/servicePrincipals/{id}`
DELETE `/serviceprincipals/{id}/owners/{id}/$ref`
DELETE `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration/$ref`
DELETE `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration/targetDeviceGroups/{targetDeviceGroupId}/$ref`
DELETE `/teams/{team-id}/channels/{channel-id}`
DELETE `/teams/{team-id}/channels/{channel-id}/tabs/{tab-id}`
DELETE `/teams/{team-id}/installedApps/{app-installation-id}`
DELETE `/users/{id}/manager/$ref`
DELETE `/users/{id}/sponsors/{id}/$ref`

Methods
GET `/administrativeUnits`
GET `/administrativeUnits/{id}`
GET `/administrativeUnits/{id}/members`
GET `/administrativeUnits/{id}/members/{id}`
GET `/administrativeUnits/{id}/members/$ref`
GET `/administrativeUnits/{id}/scopedRoleMembers`
GET `/administrativeUnits/{id}/scopedRoleMembers/{id}`
GET `/administrativeUnits/delta`
GET `/appCatalogs/teamsApps`
GET `/applications`
GET `/applications(appId='{appId}')`
GET `/applications(appId='{appId}')/extensionProperties`
GET `/applications(appId='{appId}')/owners`
GET `/applications/{application ObjectId}/extensionProperties`
GET `/applications/{applicationObjectId}`
GET `/applications/{id}/owners`
GET `/applications/delta`
GET `/applications/microsoft.graph.agentIdentityBlueprint`
GET `/contacts`
GET `/contacts/{id}`
GET `/contacts/{id}/directReports`
GET `/contacts/{id}/manager`
GET `/contacts/{id}/memberOf`
GET `/contacts/delta`
GET `/contracts`
GET `/contracts/{id}`
GET `/devices`
GET `/devices(deviceId='{deviceId}')`
GET `/devices(deviceId='{deviceId}')/memberOf`
GET `/devices(deviceId='{deviceId}')/registeredOwners`
GET `/devices(deviceId='{deviceId}')/registeredUsers`
GET `/devices(deviceId='{deviceId}')/transitiveMemberOf`
GET `/devices(deviceId='{deviceId}')/usageRights`
GET `/devices/{id}`
GET `/devices/{id}/memberOf`
GET `/devices/{id}/registeredOwners`
GET `/devices/{id}/registeredUsers`
GET `/devices/{id}/transitiveMemberOf`
GET `/devices/{objectId}/usageRights`
GET `/directory`
GET `/directory/administrativeUnits`
GET `/directory/administrativeUnits/{administrativeUnit-id}`
GET `/directory/administrativeUnits/{administrativeUnit-id}/deletedMembers`
GET `/directory/administrativeUnits/{administrativeUnit-id}/deletedMembers/{directoryObject-id}`
GET `/directory/administrativeUnits/{administrativeUnit-id}/extensions`
GET `/directory/administrativeUnits/{administrativeUnit-id}/extensions/{extension-id}`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/{directoryObject-id}/graph.application`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/{directoryObject-id}/graph.device`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/{directoryObject-id}/graph.group`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/{directoryObject-id}/graph.orgContact`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/{directoryObject-id}/graph.servicePrincipal`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/{directoryObject-id}/graph.user`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/graph.application`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/graph.device`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/graph.group`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/graph.orgContact`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/graph.servicePrincipal`
GET `/directory/administrativeUnits/{administrativeUnit-id}/members/graph.user`
GET `/directory/administrativeUnits/{administrativeUnit-id}/scopedRoleMembers`
GET `/directory/administrativeUnits/{administrativeUnit-id}/scopedRoleMembers/{scopedRoleMembership-id}`
GET `/directory/administrativeUnits/{id}`
GET `/directory/attributeSets`
GET `/directory/attributeSets/{attributeSet-id}`
GET `/directory/authenticationMethodDevices`
GET `/directory/authenticationMethodDevices/hardwareOathDevices`
GET `/directory/authenticationMethodDevices/hardwareOathDevices/{hardwareOathTokenAuthenticationMethodDevice-id}`
GET `/directory/authenticationMethodDevices/hardwareOathDevices/{hardwareOathTokenAuthenticationMethodDevice-id}/assignTo`
GET `/directory/authenticationMethodDevices/hardwareOathDevices/{hardwareOathTokenAuthenticationMethodDevice-id}/assignTo/mailboxSettings`
GET `/directory/authenticationMethodDevices/hardwareOathDevices/{hardwareOathTokenAuthenticationMethodDevice-id}/assignTo/serviceProvisioningErrors`
GET `/directory/certificateAuthorities`
GET `/directory/certificateAuthorities/certificateBasedApplicationConfigurations`
GET `/directory/certificateAuthorities/certificateBasedApplicationConfigurations/{certificateBasedApplicationConfiguration-id}`
GET `/directory/certificateAuthorities/certificateBasedApplicationConfigurations/{certificateBasedApplicationConfiguration-id}/trustedCertificateAuthorities`
GET `/directory/certificateAuthorities/certificateBasedApplicationConfigurations/{certificateBasedApplicationConfiguration-id}/trustedCertificateAuthorities/{certificateAuthorityAsEntity-id}`
GET `/directory/certificateAuthorities/mutualTlsOauthConfigurations`
GET `/directory/certificateAuthorities/mutualTlsOauthConfigurations/{mutualTlsOauthConfiguration-id}`
GET `/directory/customSecurityAttributeDefinitions`
GET `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}`
GET `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}/allowedValues`
GET `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}/allowedValues/{allowedValue-id}`
GET `/directory/externalUserProfiles`
GET `/directory/externalUserProfiles/{externalUserProfile-id}`
GET `/directory/featureRolloutPolicies`
GET `/directory/featureRolloutPolicies/{featureRolloutPolicy-id}`
GET `/directory/featureRolloutPolicies/{featureRolloutPolicy-id}/appliesTo`
GET `/directory/federationConfigurations`
GET `/directory/federationConfigurations/{identityProviderBase-id}`
GET `/directory/impactedResources`
GET `/directory/impactedResources/{impactedResource-id}`
GET `/directory/impactedResources/{impactedResource-id}/reactivate`
GET `/directory/inboundSharedUserProfiles`
GET `/directory/onPremisesSynchronization`
GET `/directory/onPremisesSynchronization/{onPremisesDirectorySynchronization-id}`
GET `/directory/outboundSharedUserProfiles`
GET `/directory/pendingExternalUserProfiles`
GET `/directory/pendingExternalUserProfiles/{pendingExternalUserProfile-id}`
GET `/directory/recommendationConfiguration`
GET `/directory/recommendations`
GET `/directory/recommendations/{recommendation-id}`
GET `/directory/recommendations/{recommendation-id}/impactedResources`
GET `/directory/recommendations/{recommendation-id}/impactedResources/{impactedResource-id}`
GET `/directory/recommendations/{recommendation-id}/impactedResources/{impactedResource-id}/reactivate`
GET `/directory/recommendations/{recommendation-id}/reactivate`
GET `/directory/sharedEmailDomains`
GET `/directory/sharedEmailDomains/{sharedEmailDomain-id}`
GET `/directory/subscriptions`
GET `/directory/subscriptions/{companySubscription-id}`
GET `/directory/templates`
GET `/directory/templates/deviceTemplates`
GET `/directory/templates/deviceTemplates/{deviceTemplate-id}`
GET `/directory/templates/deviceTemplates/{deviceTemplate-id}/owners`
GET `/directory/templates/deviceTemplates/{deviceTemplate-id}/owners/{directoryObject-id}`
GET `/directoryRoles`
GET `/directoryRoles(roleTemplateId='{roleTemplateId}')`
GET `/directoryRoles(roleTemplateId='{roleTemplateId}')/members`
GET `/directoryRoles(roleTemplateId='{roleTemplateId}')/scopedMembers`
GET `/directoryRoles/{role-id}`
GET `/directoryRoles/{role-id}/members`
GET `/directoryroles/{role-id}/scopedMembers`
GET `/directoryRoles/delta`
GET `/directoryRoleTemplates`
GET `/directoryRoleTemplates/{id}`
GET `/directorySettingTemplates`
GET `/directorySettingTemplates/{id}`
GET `/groupLifecyclePolicies`
GET `/groupLifecyclePolicies/{id}`
GET `/groups`
GET `/groups/{groupId}/cloudLicensing/usageRights`
GET `/groups/{id}`
GET `/groups/{id}/appRoleAssignments`
GET `/groups/{id}/groupLifecyclePolicies`
GET `/groups/{id}/memberOf`
GET `/groups/{id}/transitiveMemberOf`
GET `/groups/delta`
GET `/me`
GET `/me/cloudLicensing/usageRights`
GET `/me/cloudLicensing/usageRights/{usageRightId}`
GET `/me/createdObjects`
GET `/me/directReports`
GET `/me/joinedTeams`
GET `/me/licenseDetails`
GET `/me/manager`
GET `/me/memberOf`
GET `/me/ownedObjects`
GET `/me/registeredDevices`
GET `/me/scopedRoleMemberOf`
GET `/me/transitiveMemberOf`
GET `/oauth2PermissionGrants`
GET `/oauth2PermissionGrants/{id}`
GET `/oauth2PermissionGrants/delta`
GET `/onPremisesPublishingProfiles/{profile-id}/`
GET `/onPremisesPublishingProfiles/{profile-id}/agentGroups`
GET `/onPremisesPublishingProfiles/{profile-id}/agents`
GET `/onPremisesPublishingProfiles/{profile-id}/agents/{agent-id}`
GET `/onPremisesPublishingProfiles/{profile-id}/agents/{agent-id}?$expand=agentGroups`
GET `/onPremisesPublishingProfiles/applicationProxy/connectorGroups`
GET `/onPremisesPublishingProfiles/applicationProxy/connectorGroups/{id}`
GET `/onPremisesPublishingProfiles/applicationProxy/connectorGroups/{id}/applications`
GET `/onPremisesPublishingProfiles/applicationProxy/connectorGroups/{id}/members`
GET `/onPremisesPublishingProfiles/applicationProxy/connectors`
GET `/onPremisesPublishingProfiles/applicationProxy/connectors/{id}`
GET `/onPremisesPublishingProfiles/applicationProxy/connectors/{id}/memberOf`
GET `/organization`
GET `/organization/{organizationId}`
GET `/policies/adminConsentRequestPolicy`
GET `/policies/featureRolloutPolicies`
GET `/policies/featureRolloutPolicies/{id}`
GET `/roleManagement/cloudPC/roleDefinitions`
GET `/roleManagement/cloudPC/roleDefinitions/{id}`
GET `/roleManagement/directory/roleAssignments`
GET `/roleManagement/directory/roleAssignments/{id}`
GET `/roleManagement/directory/transitiveRoleAssignments?$filter=principalId eq '{principalId}'`
GET `/servicePrincipals`
GET `/servicePrincipals(appId='{appId}')`
GET `/servicePrincipals/{id}`
GET `/servicePrincipals/{id}/appRoleAssignedTo`
GET `/servicePrincipals/{id}/appRoleAssignments`
GET `/servicePrincipals/{id}/createdObjects`
GET `/servicePrincipals/{id}/memberOf`
GET `/servicePrincipals/{id}/oauth2PermissionGrants`
GET `/servicePrincipals/{id}/ownedObjects`
GET `/servicePrincipals/{id}/owners`
GET `/servicePrincipals/{id}/transitiveMemberOf`
GET `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration`
GET `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration/targetDeviceGroups`
GET `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration/targetDeviceGroups/{targetDeviceGroupId}`
GET `/servicePrincipals/delta`
GET `/servicePrincipals/microsoft.graph.agentIdentity`
GET `/servicePrincipals/microsoft.graph.agentIdentityBlueprintPrincipal`
GET `/settings`
GET `/settings/{directorySettingId}`
GET `/subscribedSkus`
GET `/subscribedSkus/{id}`
GET `/teams/{id}/installedApps/{id}`
GET `/teams/{team-id}`
GET `/teams/{team-id}/channels`
GET `/teams/{team-id}/channels/{channel-id}`
GET `/teams/{team-id}/channels/{channel-id}/tabs`
GET `/teams/{team-id}/channels/{channel-id}/tabs/{tab-id}`
GET `/teams/{team-id}/installedApps`
GET `/users`
GET `/users/{id \| user-principal-name}/joinedTeams`
GET `/users/{id \| userPrincipalName}/createdObjects`
GET `/users/{id \| userPrincipalName}/directReports`
GET `/users/{id \| userPrincipalName}/manager`
GET `/users/{id \| userPrincipalName}/ownedDevices`
GET `/users/{id \| userPrincipalName}/ownedObjects`
GET `/users/{id \| userPrincipalName}/registeredDevices`
GET `/users/{id}/licenseDetails`
GET `/users/{id}/scopedRoleMemberOf`
GET `/users/{user-id}/licenseDetails/getTeamsLicensingDetails`
GET `/users/{userId}/cloudLicensing/usageRights/{usageRightId}`
GET `/users/{userId}/usageRights`
GET `/users/delta`
POST `/administrativeUnits/{id}/members/$ref`
POST `/appCatalogs/teamsApps`
POST `/appCatalogs/teamsApps/{id}/appDefinitions`
POST `/applications(appId='{appId}')/addKey`
POST `/applications(appId='{appId}')/addPassword`
POST `/applications(appId='{appId}')/extensionProperties`
POST `/applications(appId='{appId}')/federatedIdentityCredentials`
POST `/applications(appId='{appId}')/owners/$ref`
POST `/applications(appId='{appId}')/removeKey`
POST `/applications(appId='{appId}')/removePassword`
POST `/applications/{application ObjectId}/extensionProperties`
POST `/applications/{id}/addKey`
POST `/applications/{id}/addPassword`
POST `/applications/{id}/federatedIdentityCredentials`
POST `/applications/{id}/microsoft.graph.agentIdentityBlueprint/addKey`
POST `/applications/{id}/microsoft.graph.agentIdentityBlueprint/addPassword`
POST `/applications/{id}/microsoft.graph.agentIdentityBlueprint/inheritablePermissions`
POST `/applications/{id}/microsoft.graph.agentIdentityBlueprint/owners/$ref`
POST `/applications/{id}/microsoft.graph.agentIdentityBlueprint/removeKey`
POST `/applications/{id}/microsoft.graph.agentIdentityBlueprint/removePassword`
POST `/applications/{id}/microsoft.graph.agentIdentityBlueprint/unsetVerifiedPublisher`
POST `/applications/{id}/owners/$ref`
POST `/applications/{id}/removeKey`
POST `/applications/{id}/removePassword`
POST `/applications/microsoft.graph.agentIdentityBlueprint`
POST `/applicationTemplates/{applicationTemplate-id}/instantiate`
POST `/contacts/{id}/retryServiceProvisioning`
POST `/directory/administrativeUnits`
POST `/directory/administrativeUnits/{administrativeUnit-id}/extensions`
POST `/directory/administrativeUnits/{administrativeUnit-id}/members`
POST `/directory/administrativeUnits/{administrativeUnit-id}/members/{directoryObject-id}/graph.user`
POST `/directory/administrativeUnits/{administrativeUnit-id}/scopedRoleMembers`
POST `/directory/attributeSets`
POST `/directory/authenticationMethodDevices/hardwareOathDevices`
POST `/directory/certificateAuthorities/certificateBasedApplicationConfigurations`
POST `/directory/certificateAuthorities/certificateBasedApplicationConfigurations/{certificateBasedApplicationConfiguration-id}/trustedCertificateAuthorities`
POST `/directory/certificateAuthorities/mutualTlsOauthConfigurations`
POST `/directory/customSecurityAttributeDefinitions`
POST `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}/allowedValues`
POST `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}/allowedValues/{allowedValue-id}`
POST `/directory/externalUserProfiles`
POST `/directory/featureRolloutPolicies`
POST `/directory/featureRolloutPolicies/{featureRolloutPolicy-id}/appliesTo`
POST `/directory/federationConfigurations`
POST `/directory/impactedResources`
POST `/directory/impactedResources/{impactedResource-id}/complete`
POST `/directory/impactedResources/{impactedResource-id}/dismiss`
POST `/directory/impactedResources/{impactedResource-id}/postpone`
POST `/directory/impactedResources/{impactedResource-id}/reactivate`
POST `/directory/inboundSharedUserProfiles`
POST `/directory/onPremisesSynchronization`
POST `/directory/outboundSharedUserProfiles`
POST `/directory/pendingExternalUserProfiles`
POST `/directory/recommendations`
POST `/directory/recommendations/{recommendation-id}/complete`
POST `/directory/recommendations/{recommendation-id}/dismiss`
POST `/directory/recommendations/{recommendation-id}/impactedResources`
POST `/directory/recommendations/{recommendation-id}/impactedResources/{impactedResource-id}/complete`
POST `/directory/recommendations/{recommendation-id}/impactedResources/{impactedResource-id}/dismiss`
POST `/directory/recommendations/{recommendation-id}/impactedResources/{impactedResource-id}/postpone`
POST `/directory/recommendations/{recommendation-id}/impactedResources/{impactedResource-id}/reactivate`
POST `/directory/recommendations/{recommendation-id}/postpone`
POST `/directory/recommendations/{recommendation-id}/reactivate`
POST `/directory/sharedEmailDomains`
POST `/directory/subscriptions`
POST `/directory/templates/deviceTemplates`
POST `/directory/templates/deviceTemplates/{deviceTemplate-id}/createDeviceFromTemplate`
POST `/directory/templates/deviceTemplates/{id}/owners/$ref`
POST `/directoryObjects/{id}/checkMemberGroups`
POST `/directoryObjects/{id}/checkMemberObjects`
POST `/directoryObjects/{id}/getMemberGroups`
POST `/directoryObjects/{id}/getMemberObjects`
POST `/directoryObjects/validateProperties`
POST `/groupLifecyclePolicies`
POST `/groupLifecyclePolicies/{id}/addGroup`
POST `/groupLifecyclePolicies/{id}/removeGroup`
POST `/groupLifecyclePolicies/renewGroup`
POST `/groups`
POST `/groups/{groupsId}/deletePasswordSingleSignOnCredentials`
POST `/groups/{groupsId}/getPasswordSingleSignOnCredentials`
POST `/groups/{id}/assignLicense`
POST `/groups/{id}/owners/$ref`
POST `/groups/{id}/renew`
POST `/groups/{id}/retryServiceProvisioning`
POST `/invitations`
POST `/me/invalidateAllRefreshTokens`
POST `/me/revokeSignInSessions`
POST `/oauth2PermissionGrants`
POST `/onPremisesPublishingProfiles/{profile-id}/agentGroups`
POST `/onPremisesPublishingProfiles/{profile-id}/agents/{agent-id}/agentGroups/$ref`
POST `/onPremisesPublishingProfiles/applicationProxy/connectorGroups`
POST `/onPremisesPublishingProfiles/applicationProxy/connectorGroups/{id}/members/$ref`
POST `/onPremisesPublishingProfiles/applicationProxy/connectors/{id}/memberOf/$ref`
POST `/policies/featureRolloutPolicies`
POST `/policies/featureRolloutPolicies/{id}/appliesTo/$ref`
POST `/roleManagement/deviceManagement/roleDefinitions`
POST `/schemaExtensions`
POST `/servicePrincipals`
POST `/servicePrincipals(appId='{appId}')/addKey`
POST `/servicePrincipals(appId='{appId}')/addPassword`
POST `/servicePrincipals(appId='{appId}')/addTokenSigningCertificate`
POST `/servicePrincipals(appId='{appId}')/createPasswordSingleSignOnCredentials`
POST `/servicePrincipals(appId='{appId}')/deletePasswordSingleSignOnCredentials`
POST `/servicePrincipals(appId='{appId}')/getPasswordSingleSignOnCredentials`
POST `/servicePrincipals(appId='{appId}')/microsoft.graph.agentIdentityBlueprintPrincipal/owners/$ref`
POST `/servicePrincipals(appId='{appId}')/owners/$ref`
POST `/serviceprincipals(appId='{appId}')/removeKey`
POST `/servicePrincipals(appId='{appId}')/removePassword`
POST `/servicePrincipals(appId='{appId}')/updatePasswordSingleSignOnCredentials`
POST `/servicePrincipals/{id}/addKey`
POST `/servicePrincipals/{id}/addPassword`
POST `/servicePrincipals/{id}/addTokenSigningCertificate`
POST `/servicePrincipals/{id}/createPasswordSingleSignOnCredentials`
POST `/servicePrincipals/{id}/deletePasswordSingleSignOnCredentials`
POST `/servicePrincipals/{id}/getPasswordSingleSignOnCredentials`
POST `/servicePrincipals/{id}/microsoft.graph.agentIdentity/owners/$ref`
POST `/servicePrincipals/{id}/microsoft.graph.agentIdentityBlueprintPrincipal/owners/$ref`
POST `/servicePrincipals/{id}/owners/$ref`
POST `/serviceprincipals/{id}/removeKey`
POST `/servicePrincipals/{id}/removePassword`
POST `/servicePrincipals/{id}/synchronization/jobs/{jobId}/schema/directories/{directoryId}/discover`
POST `/servicePrincipals/{id}/updatePasswordSingleSignOnCredentials`
POST `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration`
POST `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration/targetDeviceGroups`
POST `/servicePrincipals/microsoft.graph.agentIdentity`
POST `/servicePrincipals/microsoft.graph.agentIdentityBlueprintPrincipal`
POST `/settings`
POST `/teams`
POST `/teams/{id}/archive`
POST `/teams/{id}/channels/{id}/tabs`
POST `/teams/{id}/clone`
POST `/teams/{id}/unarchive`
POST `/teams/{team-id}/channels`
POST `/teams/{team-id}/installedApps`
POST `/teams/{team-id}/installedApps/{app-installation-id}/upgrade`
POST `/users`
POST `/users/{id \| userPrincipalName}/assignLicense`
POST `/users/{id \| userPrincipalName}/invalidateAllRefreshTokens`
POST `/users/{id \| userPrincipalName}/revokeSignInSessions`
POST `/users/{id}/reprocessLicenseAssignment`
POST `/users/{id}/retryServiceProvisioning`
POST `/users/{id}/sponsors/$ref`
POST `/users/{usersId}/deletePasswordSingleSignOnCredentials`
POST `/users/{usersId}/getPasswordSingleSignOnCredentials`
PATCH `/applications(appId='{appId}')/federatedIdentityCredentials(name='{name}')`
PATCH `/applications(appId='{appId}')/federatedIdentityCredentials/{federatedIdentityCredentialId}`
PATCH `/applications(appId='{appId}')/federatedIdentityCredentials/{federatedIdentityCredentialName}`
PATCH `/applications(uniqueName='{uniqueName}')/microsoft.graph.agentIdentityBlueprint`
PATCH `/applications/{id}/federatedIdentityCredentials(name='{name}')`
PATCH `/applications/{id}/federatedIdentityCredentials/{federatedIdentityCredentialId}`
PATCH `/applications/{id}/federatedIdentityCredentials/{federatedIdentityCredentialName}`
PATCH `/applications/{id}/microsoft.graph.agentIdentityBlueprint`
PATCH `/applications/{id}/microsoft.graph.agentIdentityBlueprint/inheritablePermissions/{resourceAppId}`
PATCH `/devices(deviceId='{deviceId}')`
PATCH `/devices/{id}`
PATCH `/directory`
PATCH `/directory/administrativeUnits/{administrativeUnit-id}`
PATCH `/directory/administrativeUnits/{administrativeUnit-id}/extensions/{extension-id}`
PATCH `/directory/administrativeUnits/{administrativeUnit-id}/scopedRoleMembers/{scopedRoleMembership-id}`
PATCH `/directory/attributeSets/{attributeSet-id}`
PATCH `/directory/authenticationMethodDevices`
PATCH `/directory/authenticationMethodDevices/hardwareOathDevices/{hardwareOathTokenAuthenticationMethodDevice-id}`
PATCH `/directory/authenticationMethodDevices/hardwareOathDevices/{hardwareOathTokenAuthenticationMethodDevice-id}/assignTo/mailboxSettings`
PATCH `/directory/certificateAuthorities`
PATCH `/directory/certificateAuthorities/certificateBasedApplicationConfigurations/{certificateBasedApplicationConfiguration-id}`
PATCH `/directory/certificateAuthorities/certificateBasedApplicationConfigurations/{certificateBasedApplicationConfiguration-id}/trustedCertificateAuthorities/{certificateAuthorityAsEntity-id}`
PATCH `/directory/certificateAuthorities/mutualTlsOauthConfigurations/{mutualTlsOauthConfiguration-id}`
PATCH `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}`
PATCH `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}/allowedValues/{allowedValue-id}`
PATCH `/directory/externalUserProfiles/{externalUserProfile-id}`
PATCH `/directory/featureRolloutPolicies/{featureRolloutPolicy-id}`
PATCH `/directory/federationConfigurations/{identityProviderBase-id}`
PATCH `/directory/impactedResources/{impactedResource-id}`
PATCH `/directory/inboundSharedUserProfiles`
PATCH `/directory/onPremisesSynchronization/{onPremisesDirectorySynchronization-id}`
PATCH `/directory/outboundSharedUserProfiles`
PATCH `/directory/pendingExternalUserProfiles/{pendingExternalUserProfile-id}`
PATCH `/directory/recommendationConfiguration`
PATCH `/directory/recommendations/{recommendation-id}`
PATCH `/directory/recommendations/{recommendation-id}/impactedResources/{impactedResource-id}`
PATCH `/directory/sharedEmailDomains/{sharedEmailDomain-id}`
PATCH `/directory/subscriptions/{companySubscription-id}`
PATCH `/directory/templates`
PATCH `/directory/templates/deviceTemplates/{deviceTemplate-id}`
PATCH `/groupLifecyclePolicies/{id}`
PATCH `/groups(uniqueName='uniqueName')`
PATCH `/groups/{id}`
PATCH `/oauth2PermissionGrants/{id}`
PATCH `/onPremisesPublishingProfiles/{profile-id}/agentGroups/{agentGroup-id}`
PATCH `/onPremisesPublishingProfiles/{profile-id}/hybridAgentUpdaterConfiguration`
PATCH `/onPremisesPublishingProfiles/applicationProxy/connectorGroups/{id}`
PATCH `/policies/featureRolloutPolicies/{id}`
PATCH `/roleManagement/deviceManagement/roleDefinitions/{id}`
PATCH `/schemaExtensions/{id}`
PATCH `/servicePrincipals(appId='{appId}')`
PATCH `/servicePrincipals(appId='appId')`
PATCH `/servicePrincipals/{id}`
PATCH `/servicePrincipals/{id}/graph.agentIdentityBlueprintPrincipal`
PATCH `/servicePrincipals/{id}/microsoft.graph.agentIdentity`
PATCH `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration`
PATCH `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration/targetDeviceGroups/{targetDeviceGroupId}`
PATCH `/settings/{directorySettingId}`
PATCH `/teams/{team-id}`
PATCH `/teams/{team-id}/channels/{channel-id}`
PATCH `/teams/{team-id}/channels/{channel-id}/members/{membership-id}`
PATCH `/teams/{team-id}/channels/{channel-id}/tabs/{tab-id}`
PATCH `/users/{id \| userPrincipalName}`
PUT `/applications/{id}/connectorGroup/$ref`
PUT `/groups/{id}/team`
PUT `/policies/adminConsentRequestPolicy`
PUT `/users/{id}/manager/$ref`
DELETE `/appCatalogs/teamsApps/{id}`
DELETE `/applications(appId='{appId}')/extensionProperties/{extensionPropertyId}`
DELETE `/applications(appId='{appId}')/federatedIdentityCredentials/{federatedIdentityCredentialId}`
DELETE `/applications(appId='{appId}')/federatedIdentityCredentials/{federatedIdentityCredentialName}`
DELETE `/applications(appId='{appId}')/owners/{id}/$ref`
DELETE `/applications/{application ObjectId}/extensionProperties/{extensionPropertyId}`
DELETE `/applications/{id}/federatedIdentityCredentials/{federatedIdentityCredentialId}`
DELETE `/applications/{id}/federatedIdentityCredentials/{federatedIdentityCredentialName}`
DELETE `/applications/{id}/microsoft.graph.agentIdentityBlueprint`
DELETE `/applications/{id}/microsoft.graph.agentIdentityBlueprint/inheritablePermissions/{resource_appId}`
DELETE `/applications/{id}/microsoft.graph.agentIdentityBlueprint/owners/{id}/$ref`
DELETE `/applications/{id}/owners/{id}/$ref`
DELETE `/directory/administrativeUnits/{administrativeUnit-id}`
DELETE `/directory/administrativeUnits/{administrativeUnit-id}/extensions/{extension-id}`
DELETE `/directory/administrativeUnits/{administrativeUnit-id}/members`
DELETE `/directory/administrativeUnits/{administrativeUnit-id}/members/{directoryObject-id}/graph.user`
DELETE `/directory/administrativeUnits/{administrativeUnit-id}/scopedRoleMembers/{scopedRoleMembership-id}`
DELETE `/directory/attributeSets/{attributeSet-id}`
DELETE `/directory/authenticationMethodDevices`
DELETE `/directory/authenticationMethodDevices/hardwareOathDevices/{hardwareOathTokenAuthenticationMethodDevice-id}`
DELETE `/directory/certificateAuthorities`
DELETE `/directory/certificateAuthorities/certificateBasedApplicationConfigurations/{certificateBasedApplicationConfiguration-id}`
DELETE `/directory/certificateAuthorities/certificateBasedApplicationConfigurations/{certificateBasedApplicationConfiguration-id}/trustedCertificateAuthorities/{certificateAuthorityAsEntity-id}`
DELETE `/directory/certificateAuthorities/mutualTlsOauthConfigurations/{mutualTlsOauthConfiguration-id}`
DELETE `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}`
DELETE `/directory/customSecurityAttributeDefinitions/{customSecurityAttributeDefinition-id}/allowedValues/{allowedValue-id}`
DELETE `/directory/externalUserProfiles/{externalUserProfile-id}`
DELETE `/directory/featureRolloutPolicies/{featureRolloutPolicy-id}`
DELETE `/directory/featureRolloutPolicies/{featureRolloutPolicy-id}/appliesTo`
DELETE `/directory/federationConfigurations/{identityProviderBase-id}`
DELETE `/directory/impactedResources/{impactedResource-id}`
DELETE `/directory/inboundSharedUserProfiles`
DELETE `/directory/onPremisesSynchronization/{onPremisesDirectorySynchronization-id}`
DELETE `/directory/outboundSharedUserProfiles`
DELETE `/directory/pendingExternalUserProfiles/{pendingExternalUserProfile-id}`
DELETE `/directory/recommendationConfiguration`
DELETE `/directory/recommendations/{recommendation-id}`
DELETE `/directory/recommendations/{recommendation-id}/impactedResources/{impactedResource-id}`
DELETE `/directory/sharedEmailDomains/{sharedEmailDomain-id}`
DELETE `/directory/subscriptions/{companySubscription-id}`
DELETE `/directory/templates`
DELETE `/directory/templates/deviceTemplates/{deviceTemplate-id}`
DELETE `/directory/templates/deviceTemplates/{deviceTemplateId}/owners/{id}/$ref`
DELETE `/groupLifecyclePolicies/{id}`
DELETE `/groups/{id}/members/{id}/$ref`
DELETE `/groups/{id}/owners/{id}/$ref`
DELETE `/oauth2PermissionGrants/{id}`
DELETE `/onPremisesPublishingProfiles/{profile-id}/agents/{agent-id}`
DELETE `/onPremisesPublishingProfiles/{profile-id}/agents/{agent-id}/agentGroups/{agentGroup-id}/$ref`
DELETE `/onPremisesPublishingProfiles/applicationProxy/connectorGroups/{id}`
DELETE `/policies/featureRolloutPolicies/{id}`
DELETE `/policies/featureRolloutPolicies/{policyId}/appliesTo/{directoryObjectId}/$ref`
DELETE `/roleManagement/deviceManagement/roleDefinitions/{id}`
DELETE `/schemaExtensions/{id}`
DELETE `/servicePrincipals(appId='{appId}')`
DELETE `/servicePrincipals(appId='{appId}')/microsoft.graph.agentIdentityBlueprintPrincipal`
DELETE `/servicePrincipals/{id}`
DELETE `/servicePrincipals/{id}/microsoft.graph.agentIdentity`
DELETE `/servicePrincipals/{id}/microsoft.graph.agentIdentity/owners/{id}/$ref`
DELETE `/servicePrincipals/{id}/microsoft.graph.agentIdentityBlueprintPrincipal`
DELETE `/servicePrincipals/{id}/microsoft.graph.agentIdentityBlueprintPrincipal/owners/{id}/$ref`
DELETE `/servicePrincipals/{id}/owners/{id}/$ref`
DELETE `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration/$ref`
DELETE `/servicePrincipals/{servicePrincipalsId}/remoteDesktopSecurityConfiguration/targetDeviceGroups/{targetDeviceGroupId}/$ref`
DELETE `/settings/{directorySettingId}`
DELETE `/teams/{team-id}/channels/{channel-id}`
DELETE `/teams/{team-id}/channels/{channel-id}/tabs/{tab-id}`
DELETE `/teams/{team-id}/installedApps/{app-installation-id}`
DELETE `/users/{id}/manager/$ref`
DELETE `/users/{id}/sponsors/{id}/$ref`

Commands
`Add-MgApplicationKey`
`Add-MgApplicationPassword`
`Add-MgGroupToLifecyclePolicy`
`Add-MgServicePrincipalKey`
`Add-MgServicePrincipalPassword`
`Add-MgServicePrincipalTokenSigningCertificate`
`Confirm-MgUserMemberGroup`
`Confirm-MgUserMemberObject`
`Copy-MgTeam`
`Find-MgServicePrincipalSynchronizationJobSchemaDirectory`
`Get-MgAppCatalogTeamApp`
`Get-MgApplication`
`Get-MgApplicationByAppId`
`Get-MgApplicationDelta`
`Get-MgApplicationExtensionProperty`
`Get-MgApplicationOwner`
`Get-MgBetaDevice`
`Get-MgBetaUserLicenseDetailTeamLicensingDetail`
`Get-MgContact`
`Get-MgContactDelta`
`Get-MgContactDirectReport`
`Get-MgContactManager`
`Get-MgContactMemberOf`
`Get-MgContract`
`Get-MgDevice`
`Get-MgDeviceMemberOfAsGroup`
`Get-MgDeviceRegisteredOwner`
`Get-MgDeviceRegisteredUser`
`Get-MgDeviceTransitiveMemberOfAsGroup`
`Get-MgDirectoryAdministrativeUnit`
`Get-MgDirectoryAdministrativeUnitMember`
`Get-MgDirectoryAdministrativeUnitMemberByRef`
`Get-MgDirectoryAdministrativeUnitScopedRoleMember`
`Get-MgDirectoryObjectMemberObject`
`Get-MgDirectoryRole`
`Get-MgDirectoryRoleDelta`
`Get-MgDirectoryRoleMember`
`Get-MgDirectoryRoleScopedMember`
`Get-MgDirectoryRoleTemplate`
`Get-MgGroup`
`Get-MgGroupAppRoleAssignment`
`Get-MgGroupDelta`
`Get-MgGroupLifecyclePolicy`
`Get-MgGroupLifecyclePolicyByGroup`
`Get-MgGroupMemberOfAsGroup`
`Get-MgGroupSetting`
`Get-MgGroupSettingTemplateGroupSettingTemplate`
`Get-MgGroupTransitiveMemberOf`
`Get-MgOauth2PermissionGrant`
`Get-MgOauth2PermissionGrantDelta`
`Get-MgOrganization`
`Get-MgPolicyAdminConsentRequestPolicy`
`Get-MgPolicyFeatureRolloutPolicy`
`Get-MgRoleManagementDirectoryRoleAssignment`
`Get-MgRoleManagementDirectoryRoleDefinition`
`Get-MgRoleManagementEntitlementManagementRoleAssignment`
`Get-MgRoleManagementEntitlementManagementRoleDefinition`
`Get-MgServicePrincipal`
`Get-MgServicePrincipalAppRoleAssignedTo`
`Get-MgServicePrincipalAppRoleAssignment`
`Get-MgServicePrincipalCreatedObject`
`Get-MgServicePrincipalDelta`
`Get-MgServicePrincipalMemberOf`
`Get-MgServicePrincipalOauth2PermissionGrant`
`Get-MgServicePrincipalOwnedObject`
`Get-MgServicePrincipalOwner`
`Get-MgServicePrincipalRemoteDesktopSecurityConfiguration`
`Get-MgServicePrincipalRemoteDesktopSecurityConfigurationTargetDeviceGroup`
`Get-MgServicePrincipalTransitiveMemberOf`
`Get-MgSubscribedSku`
`Get-MgTeam`
`Get-MgTeamChannel`
`Get-MgTeamChannelTab`
`Get-MgTeamInstalledApp`
`Get-MgUser`
`Get-MgUserCreatedObject`
`Get-MgUserDelta`
`Get-MgUserDirectReport`
`Get-MgUserJoinedTeam`
`Get-MgUserLicenseDetail`
`Get-MgUserMemberGroup`
`Get-MgUserMemberOfAsGroup`
`Get-MgUserOwnedDevice`
`Get-MgUserOwnedObject`
`Get-MgUserRegisteredDevice`
`Get-MgUserTransitiveMemberOf`
`Invoke-MgArchiveTeam`
`Invoke-MgInstantiateApplicationTemplate`
`Invoke-MgLicenseUser`
`Invoke-MgRenewGroup`
`Invoke-MgRetryGroupServiceProvisioning`
`Invoke-MgRetryUserServiceProvisioning`
`Invoke-MgUnarchiveTeam`
`New-MgAppCatalogTeamApp`
`New-MgAppCatalogTeamAppDefinition`
`New-MgApplicationExtensionProperty`
`New-MgApplicationOwnerByRef`
`New-MgDirectoryAdministrativeUnitMember`
`New-MgGroup`
`New-MgGroupLifecyclePolicy`
`New-MgGroupOwnerByRef`
`New-MgGroupSetting`
`New-MgInvitation`
`New-MgOauth2PermissionGrant`
`New-MgPolicyFeatureRolloutPolicy`
`New-MgPolicyFeatureRolloutPolicyApplyToByRef`
`New-MgRoleManagementDirectoryRoleDefinition`
`New-MgSchemaExtension`
`New-MgServicePrincipal`
`New-MgServicePrincipalOwnerByRef`
`New-MgServicePrincipalRemoteDesktopSecurityConfigurationTargetDeviceGroup`
`New-MgTeam`
`New-MgTeamChannel`
`New-MgTeamChannelTab`
`New-MgTeamInstalledApp`
`New-MgUser`
`Remove-MgAppCatalogTeamApp`
`Remove-MgApplicationExtensionProperty`
`Remove-MgApplicationKey`
`Remove-MgApplicationOwnerDirectoryObjectByRef`
`Remove-MgApplicationPassword`
`Remove-MgGroupFromLifecyclePolicy`
`Remove-MgGroupLifecyclePolicy`
`Remove-MgGroupMemberDirectoryObjectByRef`
`Remove-MgGroupOwnerDirectoryObjectByRef`
`Remove-MgOauth2PermissionGrant`
`Remove-MgPolicyFeatureRolloutPolicy`
`Remove-MgPolicyFeatureRolloutPolicyApplyToDirectoryObjectByRef`
`Remove-MgRoleManagementDirectoryRoleDefinition`
`Remove-MgSchemaExtension`
`Remove-MgServicePrincipal`
`Remove-MgServicePrincipalKey`
`Remove-MgServicePrincipalOwnerDirectoryObjectByRef`
`Remove-MgServicePrincipalPassword`
`Remove-MgServicePrincipalRemoteDesktopSecurityConfiguration`
`Remove-MgServicePrincipalRemoteDesktopSecurityConfigurationTargetDeviceGroup`
`Remove-MgTeamChannel`
`Remove-MgTeamChannelTab`
`Remove-MgTeamInstalledApp`
`Remove-MgUserManagerByRef`
`Revoke-MgUserSignInSession`
`Set-MgGroupLicense`
`Set-MgGroupTeam`
`Set-MgUserLicense`
`Set-MgUserManagerByRef`
`Test-MgDirectoryObjectProperty`
`Update-MgDevice`
`Update-MgGroup`
`Update-MgGroupLifecyclePolicy`
`Update-MgGroupSetting`
`Update-MgOauth2PermissionGrant`
`Update-MgPolicyAdminConsentRequestPolicy`
`Update-MgPolicyFeatureRolloutPolicy`
`Update-MgRoleManagementDirectoryRoleDefinition`
`Update-MgSchemaExtension`
`Update-MgServicePrincipal`
`Update-MgServicePrincipalByAppId`
`Update-MgServicePrincipalRemoteDesktopSecurityConfiguration`
`Update-MgServicePrincipalRemoteDesktopSecurityConfigurationTargetDeviceGroup`
`Update-MgTeam`
`Update-MgTeamChannel`
`Update-MgTeamChannelTab`
`Update-MgTeamInstalledApp`
`Update-MgUser`

Commands
`Add-MgBetaApplicationKey`
`Add-MgBetaApplicationPassword`
`Add-MgBetaGroupToLifecyclePolicy`
`Add-MgBetaServicePrincipalTokenSigningCertificate`
`Clear-MgBetaApplicationVerifiedPublisher`
`Confirm-MgBetaUserMemberGroup`
`Confirm-MgBetaUserMemberObject`
`Copy-MgBetaTeam`
`Find-MgBetaServicePrincipalSynchronizationJobSchemaDirectory`
`Get-MgBetaAdministrativeUnit`
`Get-MgBetaAdministrativeUnitDelta`
`Get-MgBetaAdministrativeUnitMember`
`Get-MgBetaAdministrativeUnitMemberByRef`
`Get-MgBetaAdministrativeUnitScopedRoleMember`
`Get-MgBetaAppCatalogTeamApp`
`Get-MgBetaApplication`
`Get-MgBetaApplicationByAppId`
`Get-MgBetaApplicationDelta`
`Get-MgBetaApplicationExtensionProperty`
`Get-MgBetaApplicationOwner`
`Get-MgBetaContact`
`Get-MgBetaContactDelta`
`Get-MgBetaContactDirectReport`
`Get-MgBetaContactManager`
`Get-MgBetaContactMemberOf`
`Get-MgBetaContract`
`Get-MgBetaDevice`
`Get-MgBetaDeviceMemberOfAsGroup`
`Get-MgBetaDeviceRegisteredOwner`
`Get-MgBetaDeviceRegisteredUser`
`Get-MgBetaDeviceTransitiveMemberOfAsGroup`
`Get-MgBetaDeviceUsageRights`
`Get-MgBetaDirectoryRole`
`Get-MgBetaDirectoryRoleByRoleTemplateId`
`Get-MgBetaDirectoryRoleDelta`
`Get-MgBetaDirectoryRoleMember`
`Get-MgBetaDirectoryRoleScopedMember`
`Get-MgBetaDirectoryRoleTemplate`
`Get-MgBetaDirectorySetting`
`Get-MgBetaDirectorySettingTemplate`
`Get-MgBetaGroup`
`Get-MgBetaGroupAppRoleAssignment`
`Get-MgBetaGroupDelta`
`Get-MgBetaGroupLifecyclePolicy`
`Get-MgBetaGroupLifecyclePolicyByGroup`
`Get-MgBetaGroupMemberOfAsGroup`
`Get-MgBetaGroupPasswordSingleSignOnCredential`
`Get-MgBetaGroupTransitiveMemberOf`
`Get-MgBetaOauth2PermissionGrant`
`Get-MgBetaOauth2PermissionGrantDelta`
`Get-MgBetaOnPremisePublishingProfile`
`Get-MgBetaOnPremisePublishingProfileAgent`
`Get-MgBetaOnPremisePublishingProfileAgentGroup`
`Get-MgBetaOnPremisePublishingProfileConnector`
`Get-MgBetaOnPremisePublishingProfileConnectorGroup`
`Get-MgBetaOnPremisePublishingProfileConnectorGroupApplication`
`Get-MgBetaOnPremisePublishingProfileConnectorGroupMember`
`Get-MgBetaOnPremisePublishingProfileConnectorMemberOf`
`Get-MgBetaOrganization`
`Get-MgBetaPolicyAdminConsentRequestPolicy`
`Get-MgBetaPolicyFeatureRolloutPolicy`
`Get-MgBetaRoleManagementDirectoryRoleAssignment`
`Get-MgBetaRoleManagementDirectoryRoleDefinition`
`Get-MgBetaRoleManagementDirectoryTransitiveRoleAssignment`
`Get-MgBetaRoleManagementExchangeRoleAssignment`
`Get-MgBetaRoleManagementExchangeRoleDefinition`
`Get-MgBetaServicePrincipal`
`Get-MgBetaServicePrincipalAppRoleAssignedTo`
`Get-MgBetaServicePrincipalAppRoleAssignment`
`Get-MgBetaServicePrincipalCreatedObject`
`Get-MgBetaServicePrincipalDelta`
`Get-MgBetaServicePrincipalMemberOf`
`Get-MgBetaServicePrincipalOauth2PermissionGrant`
`Get-MgBetaServicePrincipalOwnedObject`
`Get-MgBetaServicePrincipalOwner`
`Get-MgBetaServicePrincipalPasswordSingleSignOnCredential`
`Get-MgBetaServicePrincipalRemoteDesktopSecurityConfiguration`
`Get-MgBetaServicePrincipalRemoteDesktopSecurityConfigurationTargetDeviceGroup`
`Get-MgBetaServicePrincipalTransitiveMemberOf`
`Get-MgBetaSubscribedSku`
`Get-MgBetaTeam`
`Get-MgBetaTeamChannel`
`Get-MgBetaTeamChannelTab`
`Get-MgBetaTeamInstalledApp`
`Get-MgBetaUser`
`Get-MgBetaUserCreatedObject`
`Get-MgBetaUserDelta`
`Get-MgBetaUserDirectReport`
`Get-MgBetaUserJoinedTeam`
`Get-MgBetaUserLicenseDetail`
`Get-MgBetaUserLicenseDetailTeamLicensingDetail`
`Get-MgBetaUserMemberGroup`
`Get-MgBetaUserMemberObject`
`Get-MgBetaUserMemberOfAsGroup`
`Get-MgBetaUserOwnedDevice`
`Get-MgBetaUserOwnedObject`
`Get-MgBetaUserPasswordSingleSignOnCredential`
`Get-MgBetaUserRegisteredDevice`
`Get-MgBetaUserScopedRoleMemberOf`
`Get-MgBetaUserTransitiveMemberOf`
`Invoke-MgBetaArchiveTeam`
`Invoke-MgBetaInstantiateApplicationTemplate`
`Invoke-MgBetaInvalidateAllUserRefreshToken`
`Invoke-MgBetaLicenseUser`
`Invoke-MgBetaRenewGroup`
`Invoke-MgBetaRenewGroupLifecyclePolicy`
`Invoke-MgBetaRetryContactServiceProvisioning`
`Invoke-MgBetaRetryGroupServiceProvisioning`
`Invoke-MgBetaRetryUserServiceProvisioning`
`Invoke-MgBetaUnarchiveTeam`
`New-MgBetaAdministrativeUnitMember`
`New-MgBetaAppCatalogTeamApp`
`New-MgBetaAppCatalogTeamAppDefinition`
`New-MgBetaApplicationExtensionProperty`
`New-MgBetaApplicationFederatedIdentityCredential`
`New-MgBetaApplicationOwnerByRef`
`New-MgBetaDirectorySetting`
`New-MgBetaGroup`
`New-MgBetaGroupLifecyclePolicy`
`New-MgBetaGroupOwnerByRef`
`New-MgBetaInvitation`
`New-MgBetaOauth2PermissionGrant`
`New-MgBetaOnPremisePublishingProfileAgentGroup`
`New-MgBetaOnPremisePublishingProfileConnectorGroup`
`New-MgBetaOnPremisePublishingProfileConnectorGroupMemberByRef`
`New-MgBetaOnPremisePublishingProfileConnectorMemberOfByRef`
`New-MgBetaPolicyFeatureRolloutPolicy`
`New-MgBetaPolicyFeatureRolloutPolicyApplyToByRef`
`New-MgBetaRoleManagementCloudPcRoleDefinition`
`New-MgBetaSchemaExtension`
`New-MgBetaServicePrincipal`
`New-MgBetaServicePrincipalOwnerByRef`
`New-MgBetaServicePrincipalPasswordSingleSignOnCredential`
`New-MgBetaServicePrincipalRemoteDesktopSecurityConfigurationTargetDeviceGroup`
`New-MgBetaTeam`
`New-MgBetaTeamChannel`
`New-MgBetaTeamChannelTab`
`New-MgBetaTeamInstalledApp`
`New-MgBetaUser`
`Remove-MgBetaAppCatalogTeamApp`
`Remove-MgBetaApplicationExtensionProperty`
`Remove-MgBetaApplicationFederatedIdentityCredential`
`Remove-MgBetaApplicationKey`
`Remove-MgBetaApplicationOwnerDirectoryObjectByRef`
`Remove-MgBetaApplicationPassword`
`Remove-MgBetaDirectorySetting`
`Remove-MgBetaGroupFromLifecyclePolicy`
`Remove-MgBetaGroupLifecyclePolicy`
`Remove-MgBetaGroupMemberDirectoryObjectByRef`
`Remove-MgBetaGroupOwnerDirectoryObjectByRef`
`Remove-MgBetaGroupPasswordSingleSignOnCredential`
`Remove-MgBetaOauth2PermissionGrant`
`Remove-MgBetaOnPremisePublishingProfileAgentGroup`
`Remove-MgBetaOnPremisePublishingProfileConnectorGroup`
`Remove-MgBetaPolicyFeatureRolloutPolicy`
`Remove-MgBetaPolicyFeatureRolloutPolicyApplyToDirectoryObjectByRef`
`Remove-MgBetaRoleManagementCloudPcRoleDefinition`
`Remove-MgBetaSchemaExtension`
`Remove-MgBetaServicePrincipal`
`Remove-MgBetaServicePrincipalPasswordSingleSignOnCredential`
`Remove-MgBetaServicePrincipalRemoteDesktopSecurityConfiguration`
`Remove-MgBetaServicePrincipalRemoteDesktopSecurityConfigurationTargetDeviceGroup`
`Remove-MgBetaTeamChannel`
`Remove-MgBetaTeamChannelTab`
`Remove-MgBetaTeamInstalledApp`
`Remove-MgBetaUserManagerByRef`
`Remove-MgBetaUserPasswordSingleSignOnCredential`
`Remove-MgServicePrincipalOwnerDirectoryObjectByRef`
`Revoke-MgBetaUserSignInSession`
`Set-MgBetaApplicationConnectorGroupByRef`
`Set-MgBetaGroupLicense`
`Set-MgBetaGroupTeam`
`Set-MgBetaUserLicense`
`Set-MgBetaUserManagerByRef`
`Test-MgBetaDirectoryObjectProperty`
`Update-MgBetaApplicationFederatedIdentityCredential`
`Update-MgBetaApplicationFederatedIdentityCredentialByName`
`Update-MgBetaDevice`
`Update-MgBetaDirectorySetting`
`Update-MgBetaGroup`
`Update-MgBetaGroupLifecyclePolicy`
`Update-MgBetaOauth2PermissionGrant`
`Update-MgBetaOnPremisePublishingProfileAgentGroup`
`Update-MgBetaOnPremisePublishingProfileConnectorGroup`
`Update-MgBetaPolicyAdminConsentRequestPolicy`
`Update-MgBetaPolicyFeatureRolloutPolicy`
`Update-MgBetaRoleManagementCloudPcRoleDefinition`
`Update-MgBetaSchemaExtension`
`Update-MgBetaServicePrincipal`
`Update-MgBetaServicePrincipalByAppId`
`Update-MgBetaServicePrincipalPasswordSingleSignOnCredential`
`Update-MgBetaServicePrincipalRemoteDesktopSecurityConfiguration`
`Update-MgBetaServicePrincipalRemoteDesktopSecurityConfigurationTargetDeviceGroup`
`Update-MgBetaTeam`
`Update-MgBetaTeamChannel`
`Update-MgBetaTeamChannelTab`
`Update-MgBetaTeamInstalledApp`
`Update-MgBetaUser`

Code Examples

C# / .NET SDK

// Install: dotnet add package Microsoft.Graph
// Install: dotnet add package Azure.Identity
using Microsoft.Graph;
using Azure.Identity;

// Delegated permissions - interactive user sign-in
var scopes = new[] { "Directory.ReadWrite.All" };
var options = new InteractiveBrowserCredentialOptions
{
    ClientId = "YOUR_CLIENT_ID",
    TenantId = "YOUR_TENANT_ID",
    RedirectUri = new Uri("http://localhost")
};
var credential = new InteractiveBrowserCredential(options);
var graphClient = new GraphServiceClient(credential, scopes);

// Example: GET /me
var result = await graphClient.Me.GetAsync();
Console.WriteLine($"User: {result?.DisplayName}");

// Application permissions - daemon/service app
var tenantId = "YOUR_TENANT_ID";
var clientId = "YOUR_CLIENT_ID";
var clientSecret = "YOUR_CLIENT_SECRET";

var credential = new ClientSecretCredential(tenantId, clientId, clientSecret);
var graphClient = new GraphServiceClient(credential);

// Example: GET /users/{user-id}
var users = await graphClient.Users.GetAsync();
foreach (var user in users?.Value ?? [])
{
    Console.WriteLine($"User: {user.DisplayName}");
}

JavaScript / TypeScript

// npm install @azure/msal-browser @microsoft/microsoft-graph-client
import { PublicClientApplication } from "@azure/msal-browser";
import { Client } from "@microsoft/microsoft-graph-client";
import { AuthCodeMSALBrowserAuthenticationProvider } from 
    "@microsoft/microsoft-graph-client/authProviders/authCodeMsalBrowser";

const msalConfig = {
    auth: {
        clientId: "YOUR_CLIENT_ID",
        authority: "https://login.microsoftonline.com/YOUR_TENANT_ID"
    }
};

const pca = new PublicClientApplication(msalConfig);
await pca.initialize();

// Delegated: Login with required scope
const loginResponse = await pca.loginPopup({
    scopes: ["Directory.ReadWrite.All"]
});

const authProvider = new AuthCodeMSALBrowserAuthenticationProvider(pca, {
    account: loginResponse.account,
    scopes: ["Directory.ReadWrite.All"],
    interactionType: "popup"
});

const graphClient = Client.initWithMiddleware({ authProvider });

// Example: GET /me
const result = await graphClient.api("/me").get();
console.log(result);

// Application: Use client credentials (Node.js backend only)
// npm install @azure/identity @microsoft/microsoft-graph-client
import { ClientSecretCredential } from "@azure/identity";
import { TokenCredentialAuthenticationProvider } from 
    "@microsoft/microsoft-graph-client/authProviders/azureTokenCredentials";

const credential = new ClientSecretCredential(
    "YOUR_TENANT_ID",
    "YOUR_CLIENT_ID", 
    "YOUR_CLIENT_SECRET"
);

const authProvider = new TokenCredentialAuthenticationProvider(credential, {
    scopes: ["https://graph.microsoft.com/.default"]
});

const graphClient = Client.initWithMiddleware({ authProvider });
const result = await graphClient.api("/users").get();
console.log(result);

PowerShell

# Install Microsoft Graph PowerShell module
Install-Module Microsoft.Graph -Scope CurrentUser

# Delegated access - interactive sign-in
Connect-MgGraph -Scopes "Directory.ReadWrite.All"

# Verify connection
Get-MgContext | Select-Object Account, TenantId, Scopes

# Example: GET /me
$result = Invoke-MgGraphRequest -Method GET -Uri "https://graph.microsoft.com/v1.0/me"
$result | ConvertTo-Json -Depth 5

# Application access with certificate
$params = @{
    ClientId = "YOUR_CLIENT_ID"
    TenantId = "YOUR_TENANT_ID"
    CertificateThumbprint = "YOUR_CERT_THUMBPRINT"
}
Connect-MgGraph @params

# Or with client secret (not recommended for production)
# Connect-MgGraph -ClientSecretCredential $credential

# Example: GET /users
$result = Invoke-MgGraphRequest -Method GET -Uri "https://graph.microsoft.com/v1.0/users"
$result | ConvertTo-Json -Depth 5

# Always disconnect when done
Disconnect-MgGraph

Python

# pip install msgraph-sdk azure-identity
from azure.identity import InteractiveBrowserCredential, ClientSecretCredential
from msgraph import GraphServiceClient
import asyncio

# Delegated permissions - interactive browser sign-in
credential = InteractiveBrowserCredential(
    client_id="YOUR_CLIENT_ID",
    tenant_id="YOUR_TENANT_ID"
)
scopes = ["Directory.ReadWrite.All"]
client = GraphServiceClient(credential, scopes)

async def get_data():
    # Example: GET /me
    result = await client.me.get()
    print(f"User: {result.display_name}")
    return result

asyncio.run(get_data())

# Application permissions - client credentials
credential = ClientSecretCredential(
    tenant_id="YOUR_TENANT_ID",
    client_id="YOUR_CLIENT_ID",
    client_secret="YOUR_CLIENT_SECRET"
)
scopes = ["https://graph.microsoft.com/.default"]
client = GraphServiceClient(credential, scopes)

async def get_users():
    # Example: GET /users
    result = await client.users.get()
    for user in result.value:
        print(f"User: {user.display_name}")
    return result

asyncio.run(get_users())

App Registration

Navigate to Azure Portal

Go to App registrations in Microsoft Entra admin center

Add API Permission

Select your app → API permissions → Add a permission → Microsoft Graph

Select Permission Type

Choose Application permissions or Delegated permissions and search for Directory.ReadWrite.All

Grant Admin Consent

Application permissions always require admin consent. Click "Grant admin consent" in the Azure portal.