EngagementRole.Read

Allows the app to list a user's Viva Engage roles, on behalf of the signed-in user.

Merill's Note

For an app to access data in Microsoft Graph, the user or administrator must grant it the permissions it needs. This article lists all the Microsoft Graph APIs and your tenant data that can be accessed by the application (vendor/developer) if you consent to the EngagementRole.Read permission.

If you need to create an audit report of the permissions granted to all the apps in your tenant, you can run the Export-MsIdAppConsentGrantReport command. See How To: Run a quick OAuth app audit of your tenant

Category	Application	Delegated
Identifier	-	9f1da0fc-345c-4dfb-bab5-5215a073a417
DisplayText	-	Read a user's Viva Engage roles
Description	-	Allows the app to list a user's Viva Engage roles, on behalf of the signed-in user.
AdminConsentRequired	Yes	No

Graph Methods

→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)

	Methods

→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)

	Methods
	GET /me/employeeExperience/assignedRoles
	GET /users/{userId}/employeeExperience/assignedRoles

Resources

Granting this permission allows the calling application to access (and/or update) the following information in your tenant.

engagementRole

Graph reference: engagementRole

Property	Type	Description
displayName	String	The name of the role.
id	String	The unique identifier of the role. Read-only. Inherits from entity

Table of Contents

EngagementRole.Read

Graph Methods

Resources