ExternalItem.ReadWrite.All
Allow the app to read or write items in all external datasets that the app is authorized to access
Permission Details
Read and write items in external datasets
Allow the app to read or write items in all external datasets that the app is authorized to access
38c3d6ee-69ee-422f-b954-e17819665354
Read and write all external items
Allows the app to read and write all external items on behalf of a signed-in user. The signed-in user must be an administrator.
b02c54f8-eb48-4c50-a9f0-a149e5a2012f
Properties
Properties is shown from beta metadata because a stable v1.0 schema is not available for this resource mapping.
| Property | Type | Description |
|---|---|---|
acl |
acl collection |
|
content |
object |
|
id |
string |
The unique identifier for an entity. Read-only. |
properties |
object |
JSON Representation
JSON representation is shown from beta metadata because a stable v1.0 schema is not available for this resource mapping.
{
"acl": [
{
"@type": "acl",
"id": "00000000-0000-0000-0000-000000000000"
}
],
"content": {
"sample": "value"
},
"id": "String",
"properties": {
"sample": "value"
}
}Relationships
Relationships is shown from beta metadata because a stable v1.0 schema is not available for this resource mapping.
| Relationship | Type | Description |
|---|---|---|
acl |
acl collection |
Related acl data exposed by this resource. |
Graph Methods
Microsoft Graph v1.0 endpoints are mapped directly from refreshed Microsoft Learn permissions tables.
Microsoft Graph beta endpoints are mapped directly from refreshed Microsoft Learn permissions tables.
Microsoft Graph PowerShell v1.0 commands are mapped directly from refreshed Microsoft Learn PowerShell snippets.
Microsoft Graph PowerShell beta commands are mapped directly from refreshed Microsoft Learn PowerShell snippets.
Code Examples
// Code snippets are only available for the latest version. Current version is 5.x
// Dependencies
using Microsoft.Graph.Models.ExternalConnectors;
var requestBody = new ExternalGroup
{
Id = "31bea3d537902000",
DisplayName = "Contoso Marketing",
Description = "The product marketing team",
};
// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp
var result = await graphClient.External.Connections["{externalConnection-id}"].Groups.PostAsync(requestBody);const options = {
authProvider,
};
const client = Client.init(options);
const externalGroup = {
id: '31bea3d537902000',
displayName: 'Contoso Marketing',
description: 'The product marketing team'
};
await client.api('/external/connections/contosohr/groups')
.post(externalGroup);Import-Module Microsoft.Graph.Search
$params = @{
id = "31bea3d537902000"
displayName = "Contoso Marketing"
description = "The product marketing team"
}
New-MgExternalConnectionGroup -ExternalConnectionId $externalConnectionId -BodyParameter $params# Code snippets are only available for the latest version. Current version is 1.x
from msgraph import GraphServiceClient
from msgraph.generated.models.external_connectors.external_group import ExternalGroup
# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python
request_body = ExternalGroup(
id = "31bea3d537902000",
display_name = "Contoso Marketing",
description = "The product marketing team",
)
result = await graph_client.external.connections.by_external_connection_id('externalConnection-id').groups.post(request_body)App Registration
Navigate to Azure Portal
Go to App registrations in Microsoft Entra admin center
Add API Permission
Select your app → API permissions → Add a permission → Microsoft Graph
Select Permission Type
Choose Application permissions or delegated permissions and search for ExternalItem.ReadWrite.All
Grant Admin Consent
Application permissions always require admin consent.