Content.Process.All

Allows the app to process and evaluate content for data security, governance and compliance outcomes at tenant scope.

Merill's Note

For an app to access data in Microsoft Graph, the user or administrator must grant it the permissions it needs. This article lists all the Microsoft Graph APIs and your tenant data that can be accessed by the application (vendor/developer) if you consent to the Content.Process.All permission.

If you need to create an audit report of the permissions granted to all the apps in your tenant, you can run the Export-MsIdAppConsentGrantReport command. See How To: Run a quick OAuth app audit of your tenant

Category	Application	Delegated
Identifier	5ad511bf-571c-4ef6-8c3c-85b94b85df98	7e2467d1-f874-46bb-828e-24cb06b29d3f
DisplayText	Process content for data security, governance and compliance	Process content for data security, governance and compliance
Description	Allows the app to process and evaluate content for data security, governance and compliance outcomes at tenant scope.	Allows the app to process and evaluate content for data security, governance and compliance outcomes at tenant scope.
AdminConsentRequired	Yes	Yes

Graph Methods

→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)

	Methods

→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)

	Methods
	POST /me/dataSecurityAndGovernance/processContent
	POST /security/dataSecurityAndGovernance/processContentAsync
	POST /users/{usersId}/dataSecurityAndGovernance/processContent

Resources

Granting this permission allows the calling application to access (and/or update) the following information in your tenant.

Graph reference: processContentBatchRequest

Property	Type	Description
contentToProcess	processContentRequest	The actual content processing request details, including content metadata, activity, device, and app info.
requestId	String	A unique identifier provided by the client to correlate this specific request item within the batch.
userId	String	The unique identifier (Object ID or UPN) of the user in whose context the content should be processed.

Graph reference: processcontentrequest

Property	Type	Description
activityMetadata	microsoft.graph.activityMetadata	Metadata about the user activity (like upload, download) and location (URL). Required.
contentEntries	Collection(microsoft.graph.processContentMetadataBase)	A collection of content entries to be processed. Each entry contains the content itself and its metadata. Required.
deviceMetadata	microsoft.graph.deviceMetadata	Metadata about the device from which the content originates. Required.
integratedAppMetadata	microsoft.graph.integratedApplicationMetadata	Metadata about the integrated application making the request. Required.

Graph reference: processContentResponse

Property	Type	Description
policyActions	Collection(microsoft.graph.dlpActionInfo)	A collection of policy actions (like DLP actions) triggered by the processed content.
processingErrors	Collection(microsoft.graph.processingError)	A collection of errors encountered during the content processing.
protectionScopeState	microsoft.graph.security.protectionScopeState	Indicates if the applicable protection scope (policies) has changed since the last known state for the context. Possible values are `modified` and `notModified`.

Graph reference: processContentResponses

Property	Type	Description
requestId	String	The unique identifier that matches the `requestId` provided in the corresponding `processContentBatchRequest`.
results	microsoft.graph.processContentResponse	The outcome of processing the content associated with this `requestId`. Required.

Table of Contents

Content.Process.All

Graph Methods

Resources