Table of Contents

EngagementRole.ReadWrite.All

Allows the app to assign Viva Engage role to a user, and remove a Viva Engage role from a user behalf of the signed-in user.

Merill's Note

For an app to access data in Microsoft Graph, the user or administrator must grant it the permissions it needs. This article lists all the Microsoft Graph APIs and your tenant data that can be accessed by the application (vendor/developer) if you consent to the EngagementRole.ReadWrite.All permission.

If you need to create an audit report of the permissions granted to all the apps in your tenant, you can run the Export-MsIdAppConsentGrantReport command. See How To: Run a quick OAuth app audit of your tenant

Category Application Delegated
Identifier 3ede5358-7366-4da8-a2f7-472bf9c7cc34 4905982d-6459-4ccd-949c-949fefc0a8f2
DisplayText Modify Viva Engage role membership Modify Viva Engage role membership
Description Allows the app to assign Viva Engage role to a user, and remove a Viva Engage role from a user without a signed-in user. Allows the app to assign Viva Engage role to a user, and remove a Viva Engage role from a user behalf of the signed-in user.
AdminConsentRequired Yes Yes

Graph Methods

Resources

Granting this permission allows the calling application to access (and/or update) the following information in your tenant.

Graph reference: engagementRole

Property Type Description
displayName String The name of the role.
id String The unique identifier of the role. Read-only. Inherits from entity