ProtectionScopes.Compute.All

Allows the app to identify Purview data protection, compliance and governance policy scopes defined for all users across tenant.

Merill's Note

For an app to access data in Microsoft Graph, the user or administrator must grant it the permissions it needs. This article lists all the Microsoft Graph APIs and your tenant data that can be accessed by the application (vendor/developer) if you consent to the ProtectionScopes.Compute.All permission.

If you need to create an audit report of the permissions granted to all the apps in your tenant, you can run the Export-MsIdAppConsentGrantReport command. See How To: Run a quick OAuth app audit of your tenant

Category	Application	Delegated
Identifier	e5a76501-dbb0-492c-ab55-5d09e8837263	98f5a27a-539a-48bc-a597-f78e9e1e76bf
DisplayText	Compute Purview policies at tenant scope	Compute Purview policies at tenant scope
Description	Allows the app to identify Purview data protection, compliance and governance policy scopes defined for all users across tenant.	Allows the app to identify Purview data protection, compliance and governance policy scopes defined for all users across tenant.
AdminConsentRequired	Yes	Yes

Graph Methods

• API [v1.0]
• API [beta]
• PowerShell [v1.0]
• PowerShell [beta]

→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)

	Methods

Resources

Granting this permission allows the calling application to access (and/or update) the following information in your tenant.

• deviceMetadata
• integratedApplicationMetadata
• policylocation
• policyTenantScope
• policyUserScope

Graph reference: deviceMetadata

Property	Type	Description
deviceType	String	The general type of the device (for example, "Managed", "Unmanaged", "Unknown").
operatingSystemSpecifications	operatingSystemSpecifications	Details about the operating system platform and version.