Microsoft Cloud Permissions
This documentation outlines the permissions available for integrations included in the Microsoft Cloud Integration Bundle, detailing the actions, methods, URLs, and trigger types associated with each permission.
Microsoft CSP Permissions
User Impersonation
This permission is necessary to pull the list of customers from your CSP tenant and map them to managed Rewst organizations.
Actions:
microsoft_csp.check_if_organization_has_consent
microsoft_csp.list_customers
microsoft_csp.list_customer_subscriptions
microsoft_csp.update_customer_subscription_quantity
Microsoft Exchange Online Permissions
Exchange.Manage
Actions:
microsoft_exo.invoke_command
Exchange.ManageAsApp
Actions:
microsoft_exo.invoke_command
full_access_as_app
Actions:
microsoft_exo.invoke_command
Microsoft Azure Permissions
Key Vault User Impersonation
Actions:
microsoft_azure.list_keys_in_vault
microsoft_azure.create_key_in_vault
microsoft_azure.delete_key_in_vault
Service Management User Impersonation
Actions:
microsoft_azure.generic_request
microsoft_azure.Virtual Machines - InstanceView
microsoft_azure.Virtual Machines - List
microsoft_azure.Virtual Machines - Get
microsoft_azure.Virtual Machines - ListAvailableSizes
microsoft_azure.Virtual Machines - Delete
microsoft_azure.Virtual Machines - ListByLocation
microsoft_azure.Virtual Machines - ListAll
microsoft_azure.create_blob_storage_container
microsoft_azure.create_key_vault
microsoft_azure.get_storage_account
microsoft_azure.create_storage_account
microsoft_azure.create_vm
microsoft_azure.create_virtual_network
microsoft_azure.list_virtual_networks
microsoft_azure.list_blob_storage_containers
microsoft_azure.list_virtual_machines
microsoft_azure.delete_blob_storage_container
microsoft_azure.get_key_vault
microsoft_azure.get_virtual_machine
microsoft_azure.get_virtual_network
microsoft_azure.get_blob_storage_container
microsoft_azure.delete_storage_account
microsoft_azure.delete_key_vault
microsoft_azure.delete_virtual_machine
microsoft_azure.delete_virtual_network
microsoft_azure.list_storage_accounts
microsoft_azure.list_key_vaults
microsoft_azure.list_subscriptions
microsoft_azure.list_resource_groups
Storage User Impersonation
Actions:
microsoft_azure.generic_request
Methods:
GET
POST
PUT
PATCH
DELETE
URLs:
https://{storageAccountName}.blob.core.windows.net/{containerName}
https://{storageAccountName}.table.core.windows.net/{tableName}
Microsoft Graph Permissions
AccessReview.Read.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/identityGovernance/accessReviews/definitions
/identityGovernance/accessReviews/definitions/{definitionId}
/identityGovernance/accessReviews/definitions/{definitionId}/instances
/identityGovernance/accessReviews/definitions/{definitionId}/instances/{instanceId}
/identityGovernance/accessReviews/definitions/{definitionId}/instances/{instanceId}/decisions
/identityGovernance/accessReviews/definitions/{definitionId}/instances/{instanceId}/decisions/{decisionId}
/identityGovernance/accessReviews/definitions/{definitionId}/instances/{instanceId}/contacts
/identityGovernance/accessReviews/settings
AccessReview.ReadWrite.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
POST
PATCH
DELETE
URLs:
/identityGovernance/accessReviews/definitions
/identityGovernance/accessReviews/definitions/{definitionId}
/identityGovernance/accessReviews/definitions/{definitionId}/instances
/identityGovernance/accessReviews/definitions/{definitionId}/instances/{instanceId}
/identityGovernance/accessReviews/definitions/{definitionId}/instances/{instanceId}/decisions
/identityGovernance/accessReviews/definitions/{definitionId}/instances/{instanceId}/decisions/{decisionId}
/identityGovernance/accessReviews/definitions/{definitionId}/instances/{instanceId}/contacts
/identityGovernance/accessReviews/settings
ActivityFeed.Read
Actions:
microsoft_graph.graph_api_request
Trigger Types:
microsoft_graph.Management Activity
ActivityFeed.ReadDlp
Actions:
microsoft_graph.graph_api_request
Trigger Types:
microsoft_graph.Management Activity
AppCatalog.Read.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/appCatalogs/teamsApps
AppCatalog.ReadWrite.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
POST
DELETE
URLs:
/appCatalogs/teamsApps
/appCatalogs/teamsApps/{id}
/appCatalogs/teamsApps/{id}/appDefinitions
AppCatalog.Submit
Actions:
microsoft_graph.graph_api_request
Methods:
GET
POST
DELETE
URLs:
/appCatalogs/teamsApps
/appCatalogs/teamsApps/{id}
/appCatalogs/teamsApps/{id}/appDefinitions
AppRoleAssignment.ReadWrite.All
This is a core permission utilized with the Rewst Microsoft Cloud Connector and is necessary for dynamic permissions. It is not necessary when using an Owned App Registration.
Application.ReadWrite.All
This is a core permission utilized with the Rewst Microsoft Cloud Connector and is necessary for dynamic permissions. It is not necessary when using an Owned App Registration.
AuditLog.Read.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/activity/feed/subscriptions/content
/auditLogs/directoryAudits
/auditLogs/directoryAudits/{id}
/auditLogs/provisioning
/auditLogs/signIns
/auditLogs/signIns/{id}
/reports/authenticationMethods/userRegistrationDetails
/reports/authenticationMethods/userRegistrationDetails/{userId}
Trigger Types:
microsoft_graph.New Access from Anonymous Link
microsoft_graph.New Directory Audit Log
microsoft_graph.New Signin
microsoft_graph.Suspicious Login Distance
AuditLogsQuery.Read.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/auditLogs/directoryAudits
/auditLogs/investigationResults
/auditLogs/legacyAudits
/auditLogs/riskyUsers
/auditLogs/signIns
/auditLogs/userAccountActivity
BitlockerKey.Read.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/deviceManagement/managedDevices/{id}/bitlockerKeys
/deviceManagement/managedDevices/{id}/bitlockerKeys/{id}
Bookings.Manage.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
POST
PATCH
DELETE
URLs:
/bookings/appointments
/bookings/appointments/{id}
/bookings/businesses
/bookings/businesses/{id}
/bookings/customers
/bookings/customers/{id}
/bookings/services
/bookings/services/{id}
Bookings.Read.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/bookings/appointments
/bookings/appointments/{id}
/bookings/businesses
/bookings/businesses/{id}
/bookings/customers
/bookings/customers/{id}
/bookings/services
/bookings/services/{id}
Bookings.ReadWrite.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
POST
PATCH
DELETE
URLs:
/bookings/appointments
/bookings/appointments/{id}
/bookings/businesses
/bookings/businesses/{id}
/bookings/customers
/bookings/customers/{id}
/bookings/services
/bookings/services/{id}
BookingsAppointment.ReadWrite.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
POST
PATCH
DELETE
URLs:
/bookings/appointments
/bookings/appointments/{id}
/bookings/businesses
/bookings/businesses/{id}
/bookings/customers
/bookings/customers/{id}
/bookings/services
/bookings/services/{id}
Calendars.Read
Actions:
microsoft_graph.get_user_calendars
microsoft_graph.get_user_calendar_permissions
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/me/calendars
/me/calendars/{id}
/me/calendars/{id}/calendarPermissions
/me/calendars/{id}/events
/me/calendarGroups
/me/calendarGroups/{id}
/me/calendarGroups/{id}/events
/me/events
/me/events/{id}
/users/{id|userPrincipalName}/calendars
Calendars.Read.Shared
Actions:
microsoft_graph.get_user_calendars
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/me/calendars
/me/calendars/{id}
/me/calendars/{id}/events
/me/calendarGroups
/me/calendarGroups/{id}
/me/calendarGroups/{id}/events
/me/calendarView?startDateTime={start_datetime}&endDateTime={end_datetime}
/me/events
/me/events/{id}
/users/{id|userPrincipalName}/calendars
/users/{id|userPrincipalName}/calendars/{id}
/users/{id|userPrincipalName}/calendars/{id}/events
/users/{id|userPrincipalName}/calendarGroups
/users/{id|userPrincipalName}/calendarGroups/{id}
/users/{id|userPrincipalName}/calendarGroups/{id}/events
/users/{id|userPrincipalName}/calendarView?startDateTime={start_datetime}&endDateTime={end_datetime}
/users/{id|userPrincipalName}/events
/users/{id|userPrincipalName}/events/{id}
Calendars.ReadBasic
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/me/calendars
/me/calendars/{id}
/me/calendars/{id}/events
/me/calendarGroups
/me/calendarGroups/{id}
/me/calendarGroups/{id}/events
/me/calendarView?startDateTime={start_datetime}&endDateTime={end_datetime}
/me/events
/me/events/{id}
/users/{id|userPrincipalName}/calendars
Calendars.ReadBasic.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/me/calendars
/me/calendars/{id}
/me/calendars/{id}/events
/me/calendarGroups
/me/calendarGroups/{id}
/me/calendarGroups/{id}/events
/me/calendarView?startDateTime={start_datetime}&endDateTime={end_datetime}
/me/events
/me/events/{id}
/users/{id|userPrincipalName}/calendars
Calendars.ReadWrite
Actions:
microsoft_graph.create_event
microsoft_graph.create_user_calendar_permission
microsoft_graph.delete_user_calendar
microsoft_graph.get_user_calendars
microsoft_graph.get_user_calendar_permissions
microsoft_graph.graph_api_request
Methods:
GET
POST
PATCH
DELETE
URLs:
/me/calendars
/me/calendars/{id}
/me/calendars/{id}/events
/me/calendarGroups
/me/calendarGroups/{id}
/me/calendarGroups/{id}/events
/me/calendarView?startDateTime={start_datetime}&endDateTime={end_datetime}
/me/events
/me/events/{id}
/users/{id|userPrincipalName}/calendars
/users/{id|userPrincipalName}/calendars/{id}
/users/{id|userPrincipalName}/calendars/{id}/events
/users/{id|userPrincipalName}/calendarGroups
/users/{id|userPrincipalName}/calendarGroups/{id}
/users/{id|userPrincipalName}/calendarGroups/{id}/events
/users/{id|userPrincipalName}/calendarView?startDateTime={start_datetime}&endDateTime={end_datetime}
/users/{id|userPrincipalName}/events
/users/{id|userPrincipalName}/events/{id}
Calendars.ReadWrite.Shared
Actions:
microsoft_graph.create_event
microsoft_graph.graph_api_request
Methods:
GET
POST
PATCH
DELETE
URLs:
/me/calendars
/me/calendars/{id}
/me/calendars/{id}/events
/me/calendarGroups
/me/calendarGroups/{id}
/me/calendarGroups/{id}/events
/me/calendarView?startDateTime={start_datetime}&endDateTime={end_datetime}
/me/events
/me/events/{id}
/users/{id|userPrincipalName}/calendars
/users/{id|userPrincipalName}/calendars/{id}
/users/{id|userPrincipalName}/calendars/{id}/events
/users/{id|userPrincipalName}/calendarGroups
/users/{id|userPrincipalName}/calendarGroups/{id}
/users/{id|userPrincipalName}/calendarGroups/{id}/events
/users/{id|userPrincipalName}/calendarView?startDateTime={start_datetime}&endDateTime={end_datetime}
/users/{id|userPrincipalName}/events
/users/{id|userPrincipalName}/events/{id}
Channel.Create
Actions:
microsoft_graph.graph_api_request
Methods:
POST
URLs:
/teams/{teamId}/channels
Channel.Delete.All
Actions:
microsoft_graph.graph_api_request
Methods:
DELETE
URLs:
/teams/{teamId}/channels/{channelId}
ChannelMember.Read.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/chats/{chatId}/members
/chats/{chatId}/members/{id}
/teams/{teamId}/channels/{channelId}/members
/teams/{teamId}/channels/{channelId}/members/{id}
ChannelMember.ReadWrite.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
POST
PATCH
DELETE
URLs:
/chats/{chatId}/members
/chats/{chatId}/members/{id}
/teams/{teamId}/channels/{channelId}/members
/teams/{teamId}/channels/{channelId}/members/{id}
ChannelMessage.Edit
Actions:
microsoft_graph.graph_api_request
Methods:
PATCH
URLs:
/teams/{teamId}/channels/{channelId}/messages/{messageId}
ChannelMessage.Read.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/teams/{team-id}/channels/{channel-id}/messages
/teams/{team-id}/channels/{channel-id}/messages/delta
/teams/{team-id}/channels/{channel-id}/messages/{message-id}
/teams/{team-id}/channels/{channel-id}/messages/{message-id}/hostedContents
/teams/{team-id}/channels/{channel-id}/messages/{message-id}/hostedContents/{hosted-content-id}
/teams/{team-id}/channels/{channel-id}/messages/{message-id}/replies
/teams/{team-id}/channels/{channel-id}/messages/{message-id}/replies/{reply-id}
/teams/{team-id}/channels/{channel-id}/messages/{message-id}/replies/{reply-id}/hostedContents
/teams/{team-id}/channels/{channel-id}/messages/{message-id}/replies/{reply-id}/hostedContents/{hosted-content-id}
Trigger Types:
microsoft_graph.Teams Message Subscription
microsoft_graph.Teams Message Subscription by Team and Channel ID
ChannelMessage.ReadWrite
Actions:
microsoft_graph.graph_api_request
Methods:
GET
POST
PATCH
DELETE
URLs:
/subscriptions?resource=teams/getAllMessages
/subscriptions?resource=teams/{team_id}/channels/{channel_id}/messages
/teams/{teamId}/channels/{channelId}/messages/{messageId}
/teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}
/teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}/softDelete
/teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}/undoSoftDelete
/teams/{teamId}/channels/{channelId}/messages/{chatMessageId}/softDelete
/teams/{teamId}/channels/{channelId}/messages/{chatMessageId}/undoSoftDelete
Trigger Types:
microsoft_graph.Teams Message Subscription
microsoft_graph.Teams Message Subscription by Team and Channel ID
ChannelMessage.Send
Actions:
microsoft_graph.graph_api_request
Methods:
POST
URLs:
/teams/{teamsId}/channels/{channelId}/messages/{chatMessageId}/setReaction
/teams/{teamsId}/channels/{channelId}/messages/{chatMessageId}/unsetReaction
/teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}/setReaction
/teams/{team-id}/channels/{channel-id}/messages
/teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}/unsetReaction
/teams/{team-id}/channels/{channel-id}/messages/{message-id}/replies
ChannelMessage.UpdatePolicyViolation.All
Actions:
microsoft_graph.graph_api_request
Methods:
POST
URLs:
/teams/(team-id)/channels/{channel-id}/messages/{message-id}
/teams/(team-id)/channels/{channel-id}/messages/{message-id}/replies/{reply-id}
ChannelSettings.Read.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/teams/{teamId}/channels
/teams/{teamId}/channels/{channelId}
/teams/{teamId}/channels/{channelId}/settings
/teams/{teamId}/primaryChannel
ChannelSettings.ReadWrite.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
PATCH
URLs:
/teams/{teamId}/channels
/teams/{teamId}/channels/{channelId}
/teams/{teamId}/channels/{channelId}/settings
/teams/{teamId}/primaryChannel
Chat.Create
Actions:
microsoft_graph.graph_api_request
Methods:
POST
URLs:
/chats
Chat.ManageDeletion.All
Actions:
microsoft_graph.graph_api_request
Methods:
DELETE
URLs:
/chats/{chatId}
/chats/{chatId}/restore
Chat.Read
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/chats/{chatId}
/chats/{chatId}/messages
/chats/{chatId}/messages/{messageId}
/chats/{chatId}/messages/{messageId}/hostedContents
/chats/{chatId}/messages/{messageId}/hostedContents/{hostedContentId}
/chats/{chatId}/messages/{messageId}/replies
/chats/{chatId}/messages/{messageId}/replies/{replyId}
/chats/{chatId}/messages/{messageId}/replies/{replyId}/hostedContents
/chats/{chatId}/messages/{messageId}/replies/{replyId}/hostedContents/{hostedContentId}
Chat.Read.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/chats
/chats/{chatId}
/chats/{chatId}/messages
/chats/{chatId}/messages/{messageId}
/chats/{chatId}/messages/{messageId}/hostedContents
/chats/{chatId}/messages/{messageId}/hostedContents/{hostedContentId}
/chats/{chatId}/messages/{messageId}/replies
/chats/{chatId}/messages/{messageId}/replies/{replyId}
/chats/{chatId}/messages/{messageId}/replies/{replyId}/hostedContents
/chats/{chatId}/messages/{messageId}/replies/{replyId}/hostedContents/{hostedContentId}
Trigger Types:
microsoft_graph.Chat Message Subscription
microsoft_graph.Chat Message Subscription by Chat ID
Chat.ReadBasic
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/chats
/chats/{chatId}/members
/chats/{chatId}/members/{membershipId}
/chats/{chatId}/operations
/chats/{chatId}/operations/{operationId}
/chats/{chatId}
/me/chats/{chatId}
/teams/{id}/channels/{id}/members/{id}
/users/{userId}
Chat.ReadBasic.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/chats
/chats/{chatId}/members
/chats/{chatId}/members/{membershipId}
/chats/{chatId}/operations
/chats/{chatId}/operations/{operationId}
/chats/{chatId}
/me/chats/{chatId}
/teams/{id}/channels/{id}/members/{id}
/users/{userId}
Chat.ReadWrite
Actions:
microsoft_graph.graph_api_request
Methods:
GET
POST
PATCH
DELETE
URLs:
/chats
/chats/{chatId}
/chats/{chatId}/members
/chats/{chatId}/members/{membershipId}
/chats/{chatId}/members/{membershipId}/operation
/chats/{chatId}/messages
/chats/{chatId}/operations
/me/chats/{chatId}
/me/chats/{chatId}/messages
/teams/{teamId}/channels/{channelId}/messages/{messageId}
/teams/{teamId}/channels/{channelId}/messages/{messageId}/hostedContents
/teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}
/teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}/hostedContents
/teams/{teamId}/channels/{channelId}/messages/{messageId}/hostedContents/{hostedContentId}
Chat.ReadWrite.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
POST
PATCH
DELETE
URLs:
/chats
/chats/{chatId}
/chats/{chatId}/members
/chats/{chatId}/members/{membershipId}
/chats/{chatId}/members/{membershipId}/operation
/chats/{chatId}/messages
/chats/{chatId}/operations
/me/chats/{chatId}
/me/chats/{chatId}/messages
/subscriptions?resource=chat/getAllMessages
/subscriptions?resource=chat/{chatId}/messages
/teams/{teamId}/channels/{channelId}/messages/{messageId}
/teams/{teamId}/channels/{channelId}/messages/{messageId}/hostedContents
/teams/{teamId}/channels/{channelId}/messages/{messageId}/hostedContents/{hostedContentId}
/teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}
/teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}/hostedContents
Trigger Types:
microsoft_graph.Chat Message Subscription
microsoft_graph.Chat Message Subscription by Chat ID
Chat.UpdatePolicyViolation.All
Actions:
microsoft_graph.graph_api_request
Methods:
PATCH
URLs:
/teams/{teamId}/channels/{channelId}/messages/{messageId}
/teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}
ChatMember.Read
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/chats/{chatId}/members
/chats/{chatId}/members/{id}
ChatMember.Read.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/chats/{chatId}/members
/chats/{chatId}/members/{id}
ChatMember.ReadWrite
Actions:
microsoft_graph.graph_api_request
Methods:
GET
POST
PATCH
DELETE
URLs:
/chats/{chatId}/members
/chats/{chatId}/members/{id}
ChatMember.ReadWrite.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
POST
PATCH
DELETE
URLs:
/chats/{chatId}/members
/chats/{chatId}/members/{id}
ChatMessage.Read
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/chats/{chatId}/messages
/chats/{chatId}/messages/{id}
ChatMessage.Read.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/chats/{chatId}/messages
/chats/{chatId}/messages/{id}
ChatMessage.Send
Actions:
microsoft_graph.graph_api_request
Methods:
POST
URLs:
/chats/{chatId}/messages
/teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}/setReaction
/teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}/unsetReaction
/teams/{teamsId}/channels/{channelId}/messages/{chatMessageId}/setReaction
/teams/{teamsId}/channels/{channelId}/messages/{chatMessageId}/unsetReaction
CloudApp-Discovery.Read.All
Actions:
microsoft_graph.graph_api_request
CloudPC.Read.All
Actions:
microsoft_graph.graph_api_request
CloudPC.ReadWrite.All
Actions:
microsoft_graph.graph_api_request
Community.Read.All
Actions:
microsoft_graph.graph_api_request
Community.ReadWrite.All
Actions:
microsoft_graph.graph_api_request
Contacts.Read
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/me/contacts
/me/contactFolders
/me/contactFolders/{id}
/users/{id|userPrincipalName}/contacts
/users/{id|userPrincipalName}/contacts/{id}
Contacts.ReadWrite
Actions:
microsoft_graph.graph_api_request
Methods:
GET
POST
PATCH
DELETE
URLs:
/me/contacts
/me/contactFolders
/me/contactFolders/{id}
/me/contactFolders/{id}/contacts
/me/contactFolders/{id}/contacts/{id}
/users/{id|userPrincipalName}/contacts
/users/{id|userPrincipalName}/contacts/{id}
DelegatedAdminRelationship.Read.All
Actions:
microsoft_graph.graph_api_request
DelegatedAdminRelationship.ReadWrite.All
Actions:
microsoft_graph.graph_api_request
DelegatedPermissionGrant.ReadWrite.All
This is a core permission utilized with the Rewst Microsoft Cloud Connector and is necessary for dynamic permissions. It is not necessary when using an Owned App Registration.
Device.Command
Actions:
microsoft_graph.graph_api_request
Methods:
POST
URLs:
/devices/{id}/command
/me/devices/{id}/command
Device.Read.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/devices
/devices/{id}
/devices/{id}/registeredOwners
/devices/{id}/registeredUsers
/deviceAppManagement/mobileApps/{id}/deviceStatuses
Trigger Types:
microsoft_graph.ms_graph_device_sensor
Device.ReadWrite.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
POST
PATCH
DELETE
URLs:
/devices
/devices/{id}
/devices/{id}/registeredOwners
/devices/{id}/registeredUsers
/deviceAppManagement/mobileApps/{id}/deviceStatuses
DeviceLocalCredential.Read.All
Actions:
microsoft_graph.graph_api_request
Methods:
GET
URLs:
/deviceManagement/deviceLocalCredentialSettings
/deviceManagement/deviceLocalCredentialSettings/{id}