ScheduledPermissions.ReadWrite.All

Merill's Note

For an app to access data in Microsoft Graph, the user or administrator must grant it the permissions it needs. This article lists all the Microsoft Graph APIs and your tenant data that can be accessed by the application (vendor/developer) if you consent to the ScheduledPermissions.ReadWrite.All permission.

If you need to create an audit report of the permissions granted to all the apps in your tenant, you can run the Export-MsIdAppConsentGrantReport command. See How To: Run a quick OAuth app audit of your tenant

Category	Application	Delegated
Identifier	-	-
DisplayText	-	-
Description	-	-
AdminConsentRequired	Yes	No

Graph Methods

→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)

	Methods

→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)

	Methods
	POST /identityGovernance/permissionsManagement/scheduledPermissionsRequests

→ Command supports delegated access (access on behalf of a user)
→ Command supports app-only access (access without a user)

	Commands
	New-MgBetaIdentityGovernancePermissionManagementScheduledPermissionRequest

Resources

Granting this permission allows the calling application to access (and/or update) the following information in your tenant.

Graph reference: permissionsDefinition

Property	Type	Description
authorizationSystemInfo	permissionsDefinitionAuthorizationSystem	Information relating to the authorization system and permissions assigned.

Graph reference: requestSchedule

Property	Type	Description
expiration	expirationPattern	When the eligible or active assignment expires.
recurrence	patternedRecurrence	The frequency of the eligible or active assignment. This property is currently unsupported in PIM.
startDateTime	DateTimeOffset	When the eligible or active assignment becomes active.

Graph reference: scheduledPermissionsRequest

Property	Type	Description
createdDateTime	DateTimeOffset	Defines when the identity created the request.
id	String	Unique identifier for the permissions request within Permissions Management. Inherited from entity.
justification	String	The identity's justification for the request.
notes	String	Additional context for the permissions request.
requestedPermissions	permissionsDefinition	The permissions requested.
scheduleInfo	requestSchedule	When to assign the requested permissions.
statusDetail	statusDetail	The current status of the request. The possible values are: `submitted`, `approved`, `completed`, `canceled`, `rejected`, `unknownFutureValue`.
ticketInfo	ticketInfo	Ticketing-related metadata that you can use to correlate to the request.

Property	Type	Description
ticketNumber	String	The ticket number.
ticketSystem	String	The description of the ticket system.

Table of Contents

ScheduledPermissions.ReadWrite.All

Graph Methods

Resources