PeopleSettings.Read.All
Allows the application to read tenant-wide people settings on behalf of the signed-in user.
Merill's Note
For an app to access data in Microsoft Graph, the user or administrator must grant it the permissions it needs. This article lists all the Microsoft Graph APIs and your tenant data that can be accessed by the application (vendor/developer) if you consent to the
PeopleSettings.Read.Allpermission.If you need to create an audit report of the permissions granted to all the apps in your tenant, you can run the
Export-MsIdAppConsentGrantReportcommand. See How To: Run a quick OAuth app audit of your tenant
| Category | Application | Delegated |
|---|---|---|
| Identifier | ef02f2e7-e22d-4c77-8614-8f765683b86e | ec762c5f-388b-4b16-8693-ac1efbc611bc |
| DisplayText | Read all tenant-wide people settings | Read tenant-wide people settings |
| Description | Allows the application to read tenant-wide people settings without a signed-in user. | Allows the application to read tenant-wide people settings on behalf of the signed-in user. |
| AdminConsentRequired | Yes | Yes |
Graph Methods
→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)
| Methods | |
|---|---|
Resources
Granting this permission allows the calling application to access (and/or update) the following information in your tenant.
- enhancedPersonalizationSetting
- insightsSettings
- namePronunciationSettings
- peopleAdminSettings
- photoUpdateSettings
- profileCardProperty
- pronounsSettings
Graph reference: enhancedPersonalizationSetting
| Property | Type | Description |
|---|---|---|
| disabledForGroup | String | The ID of a Microsoft Entra group to which the value is used to disable the control for populated users. The default value is null. This parameter is optional. |
| isEnabledInOrganization | Boolean | If true, enables the enhanced personalization control and therefore related features as defined in control enhanced personalization privacy |