Sites.Create.All

Allow the application to create site collections on behalf of the signed in user. Upon creation the application will be granted Sites.Selected(delegated) + FullControl to the newly created site.

Merill's Note

For an app to access data in Microsoft Graph, the user or administrator must grant it the permissions it needs. This article lists all the Microsoft Graph APIs and your tenant data that can be accessed by the application (vendor/developer) if you consent to the Sites.Create.All permission.

If you need to create an audit report of the permissions granted to all the apps in your tenant, you can run the Export-MsIdAppConsentGrantReport command. See How To: Run a quick OAuth app audit of your tenant

Category	Application	Delegated
Identifier	80819dd8-2b3b-4551-a1ad-2700fc44f533	0e2e68e1-3f32-4e10-9281-f749e097fcbe
DisplayText	Create Site Collections without a signed in user.	Create Site Collections, on behalf of the signed-in user
Description	Allow the application to create site collections without a signed in user. Upon creation the application will be granted Sites.Selected(application) + FullControl to the newly created site.	Allow the application to create site collections on behalf of the signed in user. Upon creation the application will be granted Sites.Selected(delegated) + FullControl to the newly created site.
AdminConsentRequired	Yes	Yes

Graph Methods

→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)

	Methods

→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)

	Methods
	GET /sites/getOperationStatus(operationId='{siteOperationId}')
	POST /sites

Resources

Granting this permission allows the calling application to access (and/or update) the following information in your tenant.

Graph reference: BaseItem

Property	Type	Description
createdBy	[identitySet][]	Identity of the user, device, or application that created the item. Read-only.
createdDateTime	dateTimeOffset	Date and time of item creation. Read-only.
description	String	Provides a user-visible description of the item. Optional.
eTag	string	ETag for the item. Read-only.
id	string	The unique identifier of the drive. Read-only.
lastModifiedBy	[identitySet][]	Identity of the user, device, and application that last modified the item. Read-only.
lastModifiedDateTime	dateTimeOffset	Date and time the item was last modified. Read-only.
name	string	The name of the item. Read-write.
parentReference	[itemReference][]	Parent information, if the item has a parent. Read-write.
webUrl	string (url)	URL that either displays the resource in the browser (for Office file formats), or is a direct link to the file (for other formats). Read-only.

Graph reference: identityInput

Property	Type	Description
alias	String	The alias of the identity.
email	String	The email of the identity.
objectId	String	The unique object ID assigned to the identity in Microsoft Entra ID.

Graph reference: richLongRunningOperation

Property	Type	Description
createdDateTime	DateTimeOffset	The date and time when this operation was created.
error	publicError	Error that caused the operation to fail.
id	String	Unique identifier for the operation. Inherited from entity.
lastActionDateTime	DateTimeOffset	The date and time when the last action was performed on this operation.
percentageComplete	Int32	A value between 0 and 100 that indicates the progress of the operation.
resourceId	String	The unique identifier for the result.
resourceLocation	String	The canonical URL of the resource.
status	longRunningOperationStatus	The status of the long-running operation. The possible values are: `notStarted`, `running`, `succeeded`, `failed`, `unknownFutureValue`.
statusDetail	String	The detail about the status value.
type	String	The type of the operation.

Graph reference: site

Property	Type	Description
createdDateTime	DateTimeOffset	The date and time the item was created. Read-only.
description	string	The descriptive text for the site.
displayName	string	The full title for the site. Read-only.
eTag	string	ETag for the item. Read-only.
id	string	The unique identifier of the item. Read-only.
isPersonalSite	bool	Identifies whether the site is personal or not. Read-only.
lastModifiedDateTime	DateTimeOffset	The date and time the item was last modified. Read-only.
name	string	The name/title of the item.
root	root	If present, provides the root site in the site collection. Read-only.
sharepointIds	sharepointIds	Returns identifiers useful for SharePoint REST compatibility. Read-only.
siteCollection	siteCollection	Provides details about the site's site collection. Available only on the root site. Read-only.
webUrl	string (url)	URL that displays the item in the browser. Read-only.

Table of Contents

Sites.Create.All

Graph Methods

Resources