Microsoft Cloud Permissions

This documentation outlines the permissions available for integrations included in the Microsoft Cloud Integration Bundle, detailing the actions, methods, URLs, and trigger types associated with each permission.

Microsoft CSP Permissions

User Impersonation

This permission is necessary to pull the list of customers from your CSP tenant and map them to managed Rewst organizations.

  • Actions:

    • microsoft_csp.check_if_organization_has_consent

    • microsoft_csp.list_customers

    • microsoft_csp.list_customer_subscriptions

    • microsoft_csp.update_customer_subscription_quantity

Microsoft Exchange Online Permissions

Exchange.Manage

  • Actions:

    • microsoft_exo.invoke_command

Exchange.ManageAsApp

  • Actions:

    • microsoft_exo.invoke_command

full_access_as_app

  • Actions:

    • microsoft_exo.invoke_command

Microsoft Azure Permissions

Key Vault User Impersonation

  • Actions:

    • microsoft_azure.list_keys_in_vault

    • microsoft_azure.create_key_in_vault

    • microsoft_azure.delete_key_in_vault

Service Management User Impersonation

  • Actions:

    • microsoft_azure.generic_request

    • microsoft_azure.Virtual Machines - InstanceView

    • microsoft_azure.Virtual Machines - List

    • microsoft_azure.Virtual Machines - Get

    • microsoft_azure.Virtual Machines - ListAvailableSizes

    • microsoft_azure.Virtual Machines - Delete

    • microsoft_azure.Virtual Machines - ListByLocation

    • microsoft_azure.Virtual Machines - ListAll

    • microsoft_azure.create_blob_storage_container

    • microsoft_azure.create_key_vault

    • microsoft_azure.get_storage_account

    • microsoft_azure.create_storage_account

    • microsoft_azure.create_vm

    • microsoft_azure.create_virtual_network

    • microsoft_azure.list_virtual_networks

    • microsoft_azure.list_blob_storage_containers

    • microsoft_azure.list_virtual_machines

    • microsoft_azure.delete_blob_storage_container

    • microsoft_azure.get_key_vault

    • microsoft_azure.get_virtual_machine

    • microsoft_azure.get_virtual_network

    • microsoft_azure.get_blob_storage_container

    • microsoft_azure.delete_storage_account

    • microsoft_azure.delete_key_vault

    • microsoft_azure.delete_virtual_machine

    • microsoft_azure.delete_virtual_network

    • microsoft_azure.list_storage_accounts

    • microsoft_azure.list_key_vaults

    • microsoft_azure.list_subscriptions

    • microsoft_azure.list_resource_groups

Storage User Impersonation

  • Actions:

    • microsoft_azure.generic_request

  • Methods:

    • GET

    • POST

    • PUT

    • PATCH

    • DELETE

  • URLs:

    • https://{storageAccountName}.blob.core.windows.net/{containerName}

    • https://{storageAccountName}.table.core.windows.net/{tableName}

Microsoft Graph Permissions

AccessReview.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /identityGovernance/accessReviews/definitions

    • /identityGovernance/accessReviews/definitions/{definitionId}

    • /identityGovernance/accessReviews/definitions/{definitionId}/instances

    • /identityGovernance/accessReviews/definitions/{definitionId}/instances/{instanceId}

    • /identityGovernance/accessReviews/definitions/{definitionId}/instances/{instanceId}/decisions

    • /identityGovernance/accessReviews/definitions/{definitionId}/instances/{instanceId}/decisions/{decisionId}

    • /identityGovernance/accessReviews/definitions/{definitionId}/instances/{instanceId}/contacts

    • /identityGovernance/accessReviews/settings

AccessReview.ReadWrite.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • POST

    • PATCH

    • DELETE

  • URLs:

    • /identityGovernance/accessReviews/definitions

    • /identityGovernance/accessReviews/definitions/{definitionId}

    • /identityGovernance/accessReviews/definitions/{definitionId}/instances

    • /identityGovernance/accessReviews/definitions/{definitionId}/instances/{instanceId}

    • /identityGovernance/accessReviews/definitions/{definitionId}/instances/{instanceId}/decisions

    • /identityGovernance/accessReviews/definitions/{definitionId}/instances/{instanceId}/decisions/{decisionId}

    • /identityGovernance/accessReviews/definitions/{definitionId}/instances/{instanceId}/contacts

    • /identityGovernance/accessReviews/settings

ActivityFeed.Read

  • Actions:

    • microsoft_graph.graph_api_request

  • Trigger Types:

    • microsoft_graph.Management Activity

ActivityFeed.ReadDlp

  • Actions:

    • microsoft_graph.graph_api_request

  • Trigger Types:

    • microsoft_graph.Management Activity

AppCatalog.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /appCatalogs/teamsApps

AppCatalog.ReadWrite.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • POST

    • DELETE

  • URLs:

    • /appCatalogs/teamsApps

    • /appCatalogs/teamsApps/{id}

    • /appCatalogs/teamsApps/{id}/appDefinitions

AppCatalog.Submit

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • POST

    • DELETE

  • URLs:

    • /appCatalogs/teamsApps

    • /appCatalogs/teamsApps/{id}

    • /appCatalogs/teamsApps/{id}/appDefinitions

AppRoleAssignment.ReadWrite.All

This is a core permission utilized with the Rewst Microsoft Cloud Connector and is necessary for dynamic permissions. It is not necessary when using an Owned App Registration.

Application.ReadWrite.All

This is a core permission utilized with the Rewst Microsoft Cloud Connector and is necessary for dynamic permissions. It is not necessary when using an Owned App Registration.

AuditLog.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /activity/feed/subscriptions/content

    • /auditLogs/directoryAudits

    • /auditLogs/directoryAudits/{id}

    • /auditLogs/provisioning

    • /auditLogs/signIns

    • /auditLogs/signIns/{id}

    • /reports/authenticationMethods/userRegistrationDetails

    • /reports/authenticationMethods/userRegistrationDetails/{userId}

  • Trigger Types:

    • microsoft_graph.New Access from Anonymous Link

    • microsoft_graph.New Directory Audit Log

    • microsoft_graph.New Signin

    • microsoft_graph.Suspicious Login Distance

AuditLogsQuery.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /auditLogs/directoryAudits

    • /auditLogs/investigationResults

    • /auditLogs/legacyAudits

    • /auditLogs/riskyUsers

    • /auditLogs/signIns

    • /auditLogs/userAccountActivity

BitlockerKey.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /deviceManagement/managedDevices/{id}/bitlockerKeys

    • /deviceManagement/managedDevices/{id}/bitlockerKeys/{id}

Bookings.Manage.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • POST

    • PATCH

    • DELETE

  • URLs:

    • /bookings/appointments

    • /bookings/appointments/{id}

    • /bookings/businesses

    • /bookings/businesses/{id}

    • /bookings/customers

    • /bookings/customers/{id}

    • /bookings/services

    • /bookings/services/{id}

Bookings.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /bookings/appointments

    • /bookings/appointments/{id}

    • /bookings/businesses

    • /bookings/businesses/{id}

    • /bookings/customers

    • /bookings/customers/{id}

    • /bookings/services

    • /bookings/services/{id}

Bookings.ReadWrite.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • POST

    • PATCH

    • DELETE

  • URLs:

    • /bookings/appointments

    • /bookings/appointments/{id}

    • /bookings/businesses

    • /bookings/businesses/{id}

    • /bookings/customers

    • /bookings/customers/{id}

    • /bookings/services

    • /bookings/services/{id}

BookingsAppointment.ReadWrite.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • POST

    • PATCH

    • DELETE

  • URLs:

    • /bookings/appointments

    • /bookings/appointments/{id}

    • /bookings/businesses

    • /bookings/businesses/{id}

    • /bookings/customers

    • /bookings/customers/{id}

    • /bookings/services

    • /bookings/services/{id}

Calendars.Read

  • Actions:

    • microsoft_graph.get_user_calendars

    • microsoft_graph.get_user_calendar_permissions

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /me/calendars

    • /me/calendars/{id}

    • /me/calendars/{id}/calendarPermissions

    • /me/calendars/{id}/events

    • /me/calendarGroups

    • /me/calendarGroups/{id}

    • /me/calendarGroups/{id}/events

    • /me/events

    • /me/events/{id}

    • /users/{id|userPrincipalName}/calendars

Calendars.Read.Shared

  • Actions:

    • microsoft_graph.get_user_calendars

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /me/calendars

    • /me/calendars/{id}

    • /me/calendars/{id}/events

    • /me/calendarGroups

    • /me/calendarGroups/{id}

    • /me/calendarGroups/{id}/events

    • /me/calendarView?startDateTime={start_datetime}&endDateTime={end_datetime}

    • /me/events

    • /me/events/{id}

    • /users/{id|userPrincipalName}/calendars

    • /users/{id|userPrincipalName}/calendars/{id}

    • /users/{id|userPrincipalName}/calendars/{id}/events

    • /users/{id|userPrincipalName}/calendarGroups

    • /users/{id|userPrincipalName}/calendarGroups/{id}

    • /users/{id|userPrincipalName}/calendarGroups/{id}/events

    • /users/{id|userPrincipalName}/calendarView?startDateTime={start_datetime}&endDateTime={end_datetime}

    • /users/{id|userPrincipalName}/events

    • /users/{id|userPrincipalName}/events/{id}

Calendars.ReadBasic

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /me/calendars

    • /me/calendars/{id}

    • /me/calendars/{id}/events

    • /me/calendarGroups

    • /me/calendarGroups/{id}

    • /me/calendarGroups/{id}/events

    • /me/calendarView?startDateTime={start_datetime}&endDateTime={end_datetime}

    • /me/events

    • /me/events/{id}

    • /users/{id|userPrincipalName}/calendars

Calendars.ReadBasic.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /me/calendars

    • /me/calendars/{id}

    • /me/calendars/{id}/events

    • /me/calendarGroups

    • /me/calendarGroups/{id}

    • /me/calendarGroups/{id}/events

    • /me/calendarView?startDateTime={start_datetime}&endDateTime={end_datetime}

    • /me/events

    • /me/events/{id}

    • /users/{id|userPrincipalName}/calendars

Calendars.ReadWrite

  • Actions:

    • microsoft_graph.create_event

    • microsoft_graph.create_user_calendar_permission

    • microsoft_graph.delete_user_calendar

    • microsoft_graph.get_user_calendars

    • microsoft_graph.get_user_calendar_permissions

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • POST

    • PATCH

    • DELETE

  • URLs:

    • /me/calendars

    • /me/calendars/{id}

    • /me/calendars/{id}/events

    • /me/calendarGroups

    • /me/calendarGroups/{id}

    • /me/calendarGroups/{id}/events

    • /me/calendarView?startDateTime={start_datetime}&endDateTime={end_datetime}

    • /me/events

    • /me/events/{id}

    • /users/{id|userPrincipalName}/calendars

    • /users/{id|userPrincipalName}/calendars/{id}

    • /users/{id|userPrincipalName}/calendars/{id}/events

    • /users/{id|userPrincipalName}/calendarGroups

    • /users/{id|userPrincipalName}/calendarGroups/{id}

    • /users/{id|userPrincipalName}/calendarGroups/{id}/events

    • /users/{id|userPrincipalName}/calendarView?startDateTime={start_datetime}&endDateTime={end_datetime}

    • /users/{id|userPrincipalName}/events

    • /users/{id|userPrincipalName}/events/{id}

Calendars.ReadWrite.Shared

  • Actions:

    • microsoft_graph.create_event

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • POST

    • PATCH

    • DELETE

  • URLs:

    • /me/calendars

    • /me/calendars/{id}

    • /me/calendars/{id}/events

    • /me/calendarGroups

    • /me/calendarGroups/{id}

    • /me/calendarGroups/{id}/events

    • /me/calendarView?startDateTime={start_datetime}&endDateTime={end_datetime}

    • /me/events

    • /me/events/{id}

    • /users/{id|userPrincipalName}/calendars

    • /users/{id|userPrincipalName}/calendars/{id}

    • /users/{id|userPrincipalName}/calendars/{id}/events

    • /users/{id|userPrincipalName}/calendarGroups

    • /users/{id|userPrincipalName}/calendarGroups/{id}

    • /users/{id|userPrincipalName}/calendarGroups/{id}/events

    • /users/{id|userPrincipalName}/calendarView?startDateTime={start_datetime}&endDateTime={end_datetime}

    • /users/{id|userPrincipalName}/events

    • /users/{id|userPrincipalName}/events/{id}

Channel.Create

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • POST

  • URLs:

    • /teams/{teamId}/channels

Channel.Delete.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • DELETE

  • URLs:

    • /teams/{teamId}/channels/{channelId}

ChannelMember.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /chats/{chatId}/members

    • /chats/{chatId}/members/{id}

    • /teams/{teamId}/channels/{channelId}/members

    • /teams/{teamId}/channels/{channelId}/members/{id}

ChannelMember.ReadWrite.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • POST

    • PATCH

    • DELETE

  • URLs:

    • /chats/{chatId}/members

    • /chats/{chatId}/members/{id}

    • /teams/{teamId}/channels/{channelId}/members

    • /teams/{teamId}/channels/{channelId}/members/{id}

ChannelMessage.Edit

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • PATCH

  • URLs:

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}

ChannelMessage.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /teams/{team-id}/channels/{channel-id}/messages

    • /teams/{team-id}/channels/{channel-id}/messages/delta

    • /teams/{team-id}/channels/{channel-id}/messages/{message-id}

    • /teams/{team-id}/channels/{channel-id}/messages/{message-id}/hostedContents

    • /teams/{team-id}/channels/{channel-id}/messages/{message-id}/hostedContents/{hosted-content-id}

    • /teams/{team-id}/channels/{channel-id}/messages/{message-id}/replies

    • /teams/{team-id}/channels/{channel-id}/messages/{message-id}/replies/{reply-id}

    • /teams/{team-id}/channels/{channel-id}/messages/{message-id}/replies/{reply-id}/hostedContents

    • /teams/{team-id}/channels/{channel-id}/messages/{message-id}/replies/{reply-id}/hostedContents/{hosted-content-id}

  • Trigger Types:

    • microsoft_graph.Teams Message Subscription

    • microsoft_graph.Teams Message Subscription by Team and Channel ID

ChannelMessage.ReadWrite

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • POST

    • PATCH

    • DELETE

  • URLs:

    • /subscriptions?resource=teams/getAllMessages

    • /subscriptions?resource=teams/{team_id}/channels/{channel_id}/messages

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}/softDelete

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}/undoSoftDelete

    • /teams/{teamId}/channels/{channelId}/messages/{chatMessageId}/softDelete

    • /teams/{teamId}/channels/{channelId}/messages/{chatMessageId}/undoSoftDelete

  • Trigger Types:

    • microsoft_graph.Teams Message Subscription

    • microsoft_graph.Teams Message Subscription by Team and Channel ID

ChannelMessage.Send

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • POST

  • URLs:

    • /teams/{teamsId}/channels/{channelId}/messages/{chatMessageId}/setReaction

    • /teams/{teamsId}/channels/{channelId}/messages/{chatMessageId}/unsetReaction

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}/setReaction

    • /teams/{team-id}/channels/{channel-id}/messages

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}/unsetReaction

    • /teams/{team-id}/channels/{channel-id}/messages/{message-id}/replies

ChannelMessage.UpdatePolicyViolation.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • POST

  • URLs:

    • /teams/(team-id)/channels/{channel-id}/messages/{message-id}

    • /teams/(team-id)/channels/{channel-id}/messages/{message-id}/replies/{reply-id}

ChannelSettings.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /teams/{teamId}/channels

    • /teams/{teamId}/channels/{channelId}

    • /teams/{teamId}/channels/{channelId}/settings

    • /teams/{teamId}/primaryChannel

ChannelSettings.ReadWrite.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • PATCH

  • URLs:

    • /teams/{teamId}/channels

    • /teams/{teamId}/channels/{channelId}

    • /teams/{teamId}/channels/{channelId}/settings

    • /teams/{teamId}/primaryChannel

Chat.Create

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • POST

  • URLs:

    • /chats

Chat.ManageDeletion.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • DELETE

  • URLs:

    • /chats/{chatId}

    • /chats/{chatId}/restore

Chat.Read

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /chats/{chatId}

    • /chats/{chatId}/messages

    • /chats/{chatId}/messages/{messageId}

    • /chats/{chatId}/messages/{messageId}/hostedContents

    • /chats/{chatId}/messages/{messageId}/hostedContents/{hostedContentId}

    • /chats/{chatId}/messages/{messageId}/replies

    • /chats/{chatId}/messages/{messageId}/replies/{replyId}

    • /chats/{chatId}/messages/{messageId}/replies/{replyId}/hostedContents

    • /chats/{chatId}/messages/{messageId}/replies/{replyId}/hostedContents/{hostedContentId}

Chat.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /chats

    • /chats/{chatId}

    • /chats/{chatId}/messages

    • /chats/{chatId}/messages/{messageId}

    • /chats/{chatId}/messages/{messageId}/hostedContents

    • /chats/{chatId}/messages/{messageId}/hostedContents/{hostedContentId}

    • /chats/{chatId}/messages/{messageId}/replies

    • /chats/{chatId}/messages/{messageId}/replies/{replyId}

    • /chats/{chatId}/messages/{messageId}/replies/{replyId}/hostedContents

    • /chats/{chatId}/messages/{messageId}/replies/{replyId}/hostedContents/{hostedContentId}

  • Trigger Types:

    • microsoft_graph.Chat Message Subscription

    • microsoft_graph.Chat Message Subscription by Chat ID

Chat.ReadBasic

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /chats

    • /chats/{chatId}/members

    • /chats/{chatId}/members/{membershipId}

    • /chats/{chatId}/operations

    • /chats/{chatId}/operations/{operationId}

    • /chats/{chatId}

    • /me/chats/{chatId}

    • /teams/{id}/channels/{id}/members/{id}

    • /users/{userId}

Chat.ReadBasic.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /chats

    • /chats/{chatId}/members

    • /chats/{chatId}/members/{membershipId}

    • /chats/{chatId}/operations

    • /chats/{chatId}/operations/{operationId}

    • /chats/{chatId}

    • /me/chats/{chatId}

    • /teams/{id}/channels/{id}/members/{id}

    • /users/{userId}

Chat.ReadWrite

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • POST

    • PATCH

    • DELETE

  • URLs:

    • /chats

    • /chats/{chatId}

    • /chats/{chatId}/members

    • /chats/{chatId}/members/{membershipId}

    • /chats/{chatId}/members/{membershipId}/operation

    • /chats/{chatId}/messages

    • /chats/{chatId}/operations

    • /me/chats/{chatId}

    • /me/chats/{chatId}/messages

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}/hostedContents

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}/hostedContents

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}/hostedContents/{hostedContentId}

Chat.ReadWrite.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • POST

    • PATCH

    • DELETE

  • URLs:

    • /chats

    • /chats/{chatId}

    • /chats/{chatId}/members

    • /chats/{chatId}/members/{membershipId}

    • /chats/{chatId}/members/{membershipId}/operation

    • /chats/{chatId}/messages

    • /chats/{chatId}/operations

    • /me/chats/{chatId}

    • /me/chats/{chatId}/messages

    • /subscriptions?resource=chat/getAllMessages

    • /subscriptions?resource=chat/{chatId}/messages

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}/hostedContents

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}/hostedContents/{hostedContentId}

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}/hostedContents

  • Trigger Types:

    • microsoft_graph.Chat Message Subscription

    • microsoft_graph.Chat Message Subscription by Chat ID

Chat.UpdatePolicyViolation.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • PATCH

  • URLs:

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}

ChatMember.Read

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /chats/{chatId}/members

    • /chats/{chatId}/members/{id}

ChatMember.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /chats/{chatId}/members

    • /chats/{chatId}/members/{id}

ChatMember.ReadWrite

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • POST

    • PATCH

    • DELETE

  • URLs:

    • /chats/{chatId}/members

    • /chats/{chatId}/members/{id}

ChatMember.ReadWrite.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • POST

    • PATCH

    • DELETE

  • URLs:

    • /chats/{chatId}/members

    • /chats/{chatId}/members/{id}

ChatMessage.Read

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /chats/{chatId}/messages

    • /chats/{chatId}/messages/{id}

ChatMessage.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /chats/{chatId}/messages

    • /chats/{chatId}/messages/{id}

ChatMessage.Send

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • POST

  • URLs:

    • /chats/{chatId}/messages

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}/setReaction

    • /teams/{teamId}/channels/{channelId}/messages/{messageId}/replies/{replyId}/unsetReaction

    • /teams/{teamsId}/channels/{channelId}/messages/{chatMessageId}/setReaction

    • /teams/{teamsId}/channels/{channelId}/messages/{chatMessageId}/unsetReaction

CloudApp-Discovery.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

CloudPC.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

CloudPC.ReadWrite.All

  • Actions:

    • microsoft_graph.graph_api_request

Community.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

Community.ReadWrite.All

  • Actions:

    • microsoft_graph.graph_api_request

Contacts.Read

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /me/contacts

    • /me/contactFolders

    • /me/contactFolders/{id}

    • /users/{id|userPrincipalName}/contacts

    • /users/{id|userPrincipalName}/contacts/{id}

Contacts.ReadWrite

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • POST

    • PATCH

    • DELETE

  • URLs:

    • /me/contacts

    • /me/contactFolders

    • /me/contactFolders/{id}

    • /me/contactFolders/{id}/contacts

    • /me/contactFolders/{id}/contacts/{id}

    • /users/{id|userPrincipalName}/contacts

    • /users/{id|userPrincipalName}/contacts/{id}

DelegatedAdminRelationship.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

DelegatedAdminRelationship.ReadWrite.All

  • Actions:

    • microsoft_graph.graph_api_request

DelegatedPermissionGrant.ReadWrite.All

This is a core permission utilized with the Rewst Microsoft Cloud Connector and is necessary for dynamic permissions. It is not necessary when using an Owned App Registration.

Device.Command

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • POST

  • URLs:

    • /devices/{id}/command

    • /me/devices/{id}/command

Device.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /devices

    • /devices/{id}

    • /devices/{id}/registeredOwners

    • /devices/{id}/registeredUsers

    • /deviceAppManagement/mobileApps/{id}/deviceStatuses

  • Trigger Types:

    • microsoft_graph.ms_graph_device_sensor

Device.ReadWrite.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

    • POST

    • PATCH

    • DELETE

  • URLs:

    • /devices

    • /devices/{id}

    • /devices/{id}/registeredOwners

    • /devices/{id}/registeredUsers

    • /deviceAppManagement/mobileApps/{id}/deviceStatuses

DeviceLocalCredential.Read.All

  • Actions:

    • microsoft_graph.graph_api_request

  • Methods:

    • GET

  • URLs:

    • /deviceManagement/deviceLocalCredentialSettings

    • /deviceManagement/deviceLocalCredentialSettings/{id}

DeviceManagementApps.Read.All