diff --git a/.github/workflows/changelog-links.yml b/.github/workflows/changelog-links.yml new file mode 100644 index 00000000000..6f66d074e99 --- /dev/null +++ b/.github/workflows/changelog-links.yml @@ -0,0 +1,25 @@ +name: Changelog link validation + +on: + pull_request: + branches: [ main, live ] + +permissions: + pull-requests: write + contents: read + +jobs: + check_pull_request: + name: Check files for broken links + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v6 + with: + sparse-checkout: | + changelog + - name: Validate files + id: validate + with: + repoToken: ${{ secrets.GITHUB_TOKEN }} + changeLogDirectory: changelog + uses: microsoftgraph/changelog-link-check@v1.0.9 \ No newline at end of file diff --git a/api-reference/beta/api/accesspackage-getapplicablepolicyrequirements.md b/api-reference/beta/api/accesspackage-getapplicablepolicyrequirements.md index 6e6b71fefb4..f23b871c6c5 100644 --- a/api-reference/beta/api/accesspackage-getapplicablepolicyrequirements.md +++ b/api-reference/beta/api/accesspackage-getapplicablepolicyrequirements.md @@ -43,14 +43,14 @@ None. |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| ## Request body -Don't supply a request body for this method if you wish to retrieve a list of access package requirements as in example 1. If you want to get policy requirements for user scope as in example 2, you must supply a request body. +Don't supply a request body for this method. ## Response If successful, this method returns a `200 OK` response code and an [accessPackageAssignmentRequestRequirements](../resources/accesspackageassignmentrequestrequirements.md) collection in the response body, one object for each policy for which the user is an **allowedRequestor**. If there's a policy with no requirements, the **accessPackageAssignmentRequestRequirements** has `false` and `null` values. If there are no policies where the user is an **allowedRequestor**, an empty collection is returned instead. ## Examples -### Example 1: Retrieve a list of access package requirements to create an access package +### Example 1: Retrieve a list of access package requirements #### Request @@ -141,123 +141,7 @@ Content-Type: application/json } ``` -### Example 2: Get policy requirements for a given user scope - -#### Request - -The following example shows a request. - -# [HTTP](#tab/http) - - -```http -POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackages/b15419bb-5ffc-ea11-b207-c8d9d21f4e9a/getApplicablePolicyRequirements - -{ - "subject": { - "objectId": "5acd375c-8acb-45de-a958-fa0dd89259ad" - } - } -``` - -# [C#](#tab/csharp) -[!INCLUDE [sample-code](../includes/snippets/csharp/get-req-for-given-user-csharp-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Go](#tab/go) -[!INCLUDE [sample-code](../includes/snippets/go/get-req-for-given-user-go-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Java](#tab/java) -[!INCLUDE [sample-code](../includes/snippets/java/get-req-for-given-user-java-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [JavaScript](#tab/javascript) -[!INCLUDE [sample-code](../includes/snippets/javascript/get-req-for-given-user-javascript-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PHP](#tab/php) -[!INCLUDE [sample-code](../includes/snippets/php/get-req-for-given-user-php-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PowerShell](#tab/powershell) -[!INCLUDE [sample-code](../includes/snippets/powershell/get-req-for-given-user-powershell-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Python](#tab/python) -[!INCLUDE [sample-code](../includes/snippets/python/get-req-for-given-user-python-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - ---- - -#### Response - -The following example shows the response. - - - -```http -HTTP/1.1 200 OK -Content-Type: application/json - -{ - "value": [ - { - "policyId": "d6322c23-04d6-eb11-b22b-c8d9d21f4e9a", - "policyDisplayName": "Initial Policy", - "policyDescription": "Initial Policy", - "isApprovalRequired": false, - "isApprovalRequiredForExtension": false, - "isRequestorJustificationRequired": false, - "questions": [ - { - "@odata.type": "#microsoft.graph.textInputQuestion", - "id": "5a7f2a8f-b802-4438-bec6-09599bc43e13", - "isRequired": false, - "isAnswerEditable": true, - "sequence": 0, - "isSingleLineQuestion": true, - "text": { - "defaultText": "Enter your mail", - "localizedTexts": [] - } - } - ], - "existingAnswers": [ - { - "@odata.type": "#microsoft.graph.answerString", - "displayValue": "admin@contoso.com", - "value": "admin@contoso.com", - "answeredQuestion": { - "@odata.type": "#microsoft.graph.textInputQuestion", - "id": "5a7f2a8f-b802-4438-bec6-09599bc43e13", - "isRequired": false, - "isAnswerEditable": true, - "sequence": 0, - "isSingleLineQuestion": true, - "text": { - "defaultText": "Enter your mail", - "localizedTexts": [] - } - } - } - ], - "schedule": [] - } - ] -} -``` - -### Example 3: Get policy requirements for verifiable credential status requirements +### Example 2: Get policy requirements for verifiable credential status requirements #### Request diff --git a/api-reference/beta/api/accesspackage-post-accesspackageresourcerolescopes.md b/api-reference/beta/api/accesspackage-post-accesspackageresourcerolescopes.md index 4299039fcec..1d7236aae0d 100644 --- a/api-reference/beta/api/accesspackage-post-accesspackageresourcerolescopes.md +++ b/api-reference/beta/api/accesspackage-post-accesspackageresourcerolescopes.md @@ -449,10 +449,10 @@ Content-type: application/json "description": "/resourceGroups/rg", "displayName": "/resourceGroups/rg", "isRootScope": false, - "originSystem": "AzureResources", - "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg" - } - } + "originSystem": "AzureResources", + "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg" + } +} ``` # [C#](#tab/csharp) diff --git a/api-reference/beta/api/accesspackageassignmentrequest-cancel.md b/api-reference/beta/api/accesspackageassignmentrequest-cancel.md index aae258266a9..2ed95117a54 100644 --- a/api-reference/beta/api/accesspackageassignmentrequest-cancel.md +++ b/api-reference/beta/api/accesspackageassignmentrequest-cancel.md @@ -23,7 +23,7 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/accesspackageassignmentrequest-cancel-permissions.md)] -[!INCLUDE [rbac-entitlement-access-package-assignment-manager-write](../includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write.md)] +[!INCLUDE [rbac-entitlement-access-package-assignment-manager-write-including-subject-access](../includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write-including-subject-access.md)] ## HTTP request diff --git a/api-reference/beta/api/crosstenantmigrationjob-migrate.md b/api-reference/beta/api/crosstenantmigrationjob-migrate.md new file mode 100644 index 00000000000..b89ee2980e9 --- /dev/null +++ b/api-reference/beta/api/crosstenantmigrationjob-migrate.md @@ -0,0 +1,119 @@ +--- +title: "crossTenantMigrationJob: migrate" +description: "Migrate a crossTenantMigrationJob asynchronously." +author: "danguilliams" +ms.date: 05/05/2026 +ms.localizationpriority: medium +ms.subservice: "t2t-migration" +doc_type: apiPageType +--- + +# crossTenantMigrationJob: migrate + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Migrate a [cross-tenant migration job](../resources/crosstenantmigrationjob.md) asynchronously. The job must pass validation before migration can start. After a job is created by using the [Create crossTenantMigrationJob](../api/migrationsroot-post-crosstenantmigrationjobs.md) method and validated by using the [validate](../api/crosstenantmigrationjob-validate.md) action, call this action to start the migration of user data from the source tenant to the target tenant for the specified workloads. Validation results expire after seven days; if expired, revalidate the job before you call the **migrate** API. + +This action is asynchronous. After you call the **migrate** API, poll the [Get crossTenantMigrationJob](../api/crosstenantmigrationjob-get.md) endpoint to check for a terminal status of `completed`, `completedWithErrors`, or `failed`. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/crosstenantmigrationjob-migrate-permissions.md)] + +[!INCLUDE [access-requirements](../includes/rbac-for-apis/rbac-crosstenantmigration-apis.md)] + +## HTTP request + + +``` http +POST /solutions/migrations/crossTenantMigrationJobs/{crossTenantMigrationJobId}/migrate +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this action returns a `200 OK` response code and a [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) in the response body. + +This method can also return the following error codes in the response body. + +| Status code | Description | +|:---|:---| +| `404 Not Found` | The specified **crossTenantMigrationJob** wasn't found. | +| `409 Conflict` | The job isn't in a valid status for migration. The job must be in `validatePassed`, `failed`, or `completedWithErrors` status. | +| `409 Conflict` | The validation results expired (more than seven days ago). Revalidate the job before you call the **migrate** API. | + +## Examples + +### Request + +The following example shows a request. + +``` http +POST https://graph.microsoft.com/beta/solutions/migrations/crossTenantMigrationJobs/add14989-2b21-4001-81bd-a18b0bac1dea/migrate +``` + +### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#microsoft.graph.crossTenantMigrationJob", + "id": "add14989-2b21-4001-81bd-a18b0bac1dea", + "displayName": "Contoso_migration_job", + "status": "processing", + "jobType": "migrate", + "message": "Migration job has been submitted successfully", + "completeAfterDateTime": "2026-05-22T17:14:52Z", + "sourceTenantId": "12345678-1234-1234-1234-123456789012", + "targetTenantId": "87654321-4321-4321-4321-210987654321", + "resourceType": "users", + "resources": [], + "workloads": [ + "Teams", + "Exchange", + "ODSP" + ], + "createdBy": "admin@fabrikam.onmicrosoft.com", + "createdDateTime": "2026-05-04T20:55:10.5427196Z", + "lastUpdatedDateTime": "2026-05-04T20:55:10Z", + "exchangeSettings": { + "targetDeliveryDomain": "fabrikam.com", + "sourceEndpoint": "EXOHandler" + } +} +``` diff --git a/api-reference/beta/api/crosstenantmigrationjob-validate.md b/api-reference/beta/api/crosstenantmigrationjob-validate.md index 92b9f6d8c0d..ebf5aa2d4d6 100644 --- a/api-reference/beta/api/crosstenantmigrationjob-validate.md +++ b/api-reference/beta/api/crosstenantmigrationjob-validate.md @@ -1,8 +1,8 @@ --- title: "crossTenantMigrationJob: validate" -description: "Validate the configuration of a crossTenantMigrationJob" +description: "Validate the configuration of a crossTenantMigrationJob asynchronously." author: "danguilliams" -ms.date: 10/30/2025 +ms.date: 05/05/2026 ms.localizationpriority: medium ms.subservice: "t2t-migration" doc_type: apiPageType @@ -14,9 +14,9 @@ Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Validate the configuration of a [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md). This function doesn't migrate any content, but goes through validation for the specified workloads to find any errors or misconfigurations that would affect an actual migration job. +Validate the configuration of a [cross-tenant migration job](../resources/crosstenantmigrationjob.md) asynchronously. This action doesn't migrate any content, but goes through validation for the specified workloads to find any errors or misconfigurations that affect an actual migration job. The job must be in a `submitted` or `validateFailed` status before you can call this action. -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] +This action is asynchronous. After you call the **validate** API, poll the [Get crossTenantMigrationJob](../api/crosstenantmigrationjob-get.md) endpoint to check for a terminal status of `validatePassed` or `validateFailed`. ## Permissions @@ -38,7 +38,7 @@ Choose the permission or permissions marked as least privileged for this API. Us } --> ``` http -POST /solutions/migrations/crossTenantMigrationJobs/validate +POST /solutions/migrations/crossTenantMigrationJobs/{crossTenantMigrationJobId}/validate ``` ## Request headers @@ -46,88 +46,36 @@ POST /solutions/migrations/crossTenantMigrationJobs/validate |Name|Description| |:---|:---| |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| -|Content-Type|application/json. Required.| ## Request body -In the request body, supply a JSON representation of the parameters. - -The following table lists the parameters that are required when you call this action. - -|Parameter|Type|Description| -|:---|:---|:---| -|displayName|String|Name of the crossTenantMigrationJob to validate| -|completeAfterDateTime|String|When the CrossTenantMigrationJob| -|sourceTenantId|String|Source tenant for the CrossTenantMigrationJob| -|exchangeSettings|[exchangeOnlineCrossTenantMigrationSettings](../resources/exchangeonlinecrosstenantmigrationsettings.md)|Exchange migration settings for the CrossTenantMigrationJob| -|workloads|String collection|Workloads to validate for the CrossTenantMigrationJob | -|resourceType|String|Type of resource in the CrossTenantMigrationJob.| -|resources|String collection|Identifiers of the users in the CrossTenantMigrationJob to validate| +Don't supply a request body for this method. +## Response +If successful, this action returns a `200 OK` response code and a [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) in the response body. -## Response +This method can also return the following error codes in the response body. -If successful, this action returns a `201 Created` response code and a [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) in the response body. +| Status code | Description | +|:---|:---| +| `404 Not Found` | The specified **crossTenantMigrationJob** wasn't found. | +| `409 Conflict` | The job isn't in a valid status for validation. The job must be in `submitted` or `validateFailed` status. | ## Examples ### Request The following example shows a request. -# [HTTP](#tab/http) ``` http -POST https://graph.microsoft.com/beta/solutions/migrations/crossTenantMigrationJobs/validate -Content-Type: application/json - -{ - "displayName": "Contoso_migration_validation_job", - "completeAfterDateTime": "2025-05-22T17:14:52Z", - "sourceTenantId": "12345678-1234-1234-1234-123456789012", - "exchangeSettings": { - "targetDeliveryDomain": "fabrikam.com", - "sourceEndpoint": "EXOHandler" - }, - "resources": [ - "b5b8bc4f-0e36-4ad3-8ddf-248b68260b89", - "ac87d040-a081-426c-a73b-81133f458a29" - ], - "workloads": [ "Teams" ], - "resourceType": "Users" -} +POST https://graph.microsoft.com/beta/solutions/migrations/crossTenantMigrationJobs/add14989-2b21-4001-81bd-a18b0bac1dea/validate ``` -# [C#](#tab/csharp) -[!INCLUDE [sample-code](../includes/snippets/csharp/crosstenantmigrationjobthisvalidate-csharp-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Go](#tab/go) -[!INCLUDE [sample-code](../includes/snippets/go/crosstenantmigrationjobthisvalidate-go-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Java](#tab/java) -[!INCLUDE [sample-code](../includes/snippets/java/crosstenantmigrationjobthisvalidate-java-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [JavaScript](#tab/javascript) -[!INCLUDE [sample-code](../includes/snippets/javascript/crosstenantmigrationjobthisvalidate-javascript-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PHP](#tab/php) -[!INCLUDE [sample-code](../includes/snippets/php/crosstenantmigrationjobthisvalidate-php-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Python](#tab/python) -[!INCLUDE [sample-code](../includes/snippets/python/crosstenantmigrationjobthisvalidate-python-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - ---- - ### Response The following example shows the response. @@ -139,31 +87,32 @@ The following example shows the response. } --> ``` http -HTTP/1.1 201 Created +HTTP/1.1 200 OK Content-Type: application/json { "@odata.context": "https://graph.microsoft.com/beta/$metadata#microsoft.graph.crossTenantMigrationJob", - "id": "0d1d9dbb-7676-4731-a601-5e8406fd7bcf", - "displayName": "Contoso_migration_validation_job", + "id": "add14989-2b21-4001-81bd-a18b0bac1dea", + "displayName": "Contoso_migration_job", "status": "validateSubmitted", "jobType": "validate", "message": "Validation job has been submitted successfully", - "completeAfterDateTime": "2025-05-22T17:14:52Z", + "completeAfterDateTime": "2026-05-22T17:14:52Z", "sourceTenantId": "12345678-1234-1234-1234-123456789012", "targetTenantId": "87654321-4321-4321-4321-210987654321", "resourceType": "users", "resources": [], "workloads": [ - "teams" + "Teams", + "Exchange", + "ODSP" ], "createdBy": "admin@fabrikam.onmicrosoft.com", - "createdDateTime": "2025-11-07T00:19:21.4810014Z", - "lastUpdatedDateTime": "2025-11-07T00:19:21Z", + "createdDateTime": "2026-05-04T20:55:10.5427196Z", + "lastUpdatedDateTime": "2026-05-04T20:55:10Z", "exchangeSettings": { "targetDeliveryDomain": "fabrikam.com", "sourceEndpoint": "EXOHandler" } } ``` - diff --git a/api-reference/beta/api/entitlementmanagement-post-assignmentrequests.md b/api-reference/beta/api/entitlementmanagement-post-assignmentrequests.md index 3607e861216..9ad0b68616b 100644 --- a/api-reference/beta/api/entitlementmanagement-post-assignmentrequests.md +++ b/api-reference/beta/api/entitlementmanagement-post-assignmentrequests.md @@ -25,7 +25,7 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md)] -[!INCLUDE [rbac-entitlement-end-user-apis-write](../includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write.md)] +[!INCLUDE [rbac-entitlement-end-user-apis-write-including-subject-access](../includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md)] ## HTTP request diff --git a/api-reference/beta/api/migrationsroot-post-crosstenantmigrationjobs.md b/api-reference/beta/api/migrationsroot-post-crosstenantmigrationjobs.md index 5938c4a1fbd..544a6f83b8b 100644 --- a/api-reference/beta/api/migrationsroot-post-crosstenantmigrationjobs.md +++ b/api-reference/beta/api/migrationsroot-post-crosstenantmigrationjobs.md @@ -14,7 +14,8 @@ Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Create a new [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md). +Create a new [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md). A job defines the migration batch but doesn't start validation or migration. After you create the job, call [validate](../api/crosstenantmigrationjob-validate.md) to verify tenant and resource configuration, then call [migrate](../api/crosstenantmigrationjob-migrate.md) to begin the actual migration. + [!INCLUDE [national-cloud-support](../../includes/global-only.md)] @@ -62,7 +63,7 @@ You can specify the following properties when creating a **crossTenantMigrationJ |exchangeSettings|[exchangeOnlineCrossTenantMigrationSettings](../resources/exchangeonlinecrosstenantmigrationsettings.md)|Settings for Exchange Online migrations. Optional, but required if Exchange is a specified workload.| |workloads|String collection|Workloads to migrate on the resources. Optional. If excluded, all available workloads are included in the migration.| |resourceType|String|Type of resources to migrate. Only `Users` is supported at this time. Required.| -|resources|String collection|Object IDs (GUID) of the resources to migrate. Limit of 2,000 resources per [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) Required.| +|resources|String collection|Object IDs (GUID) of the resources to migrate. Limit of 2,000 resources per [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md). Required.| @@ -155,18 +156,24 @@ Content-Type: application/json "@odata.context": "https://graph.microsoft.com/beta/$metadata#solutions/migrations/crossTenantMigrationJobs/$entity", "id": "add14989-2b21-4001-81bd-a18b0bac1dea", "displayName": "Contoso_migration_job", - "jobType" : "migrate", - "status": "Submitted", + "jobType": "validate", + "status": "submitted", "message": "", "completeAfterDateTime": "2023-12-17T20:38:04.101Z", + "targetTenantId": "87654321-4321-4321-4321-210987654321", "sourceTenantId": "12345678-1234-1234-1234-123456789012", "exchangeSettings": { - "targetDeliveryDomain": "fabirkam.onmicrosoft.com", + "targetDeliveryDomain": "fabrikam.onmicrosoft.com", "sourceEndpoint": "sampleEndpointText" }, - "resourceType":"Users", + "resources": [ + "4dd550d9-9ea2-4e71-a16b-60b1d1c4f506", + "63f15b55-f61a-49cb-a599-2e3d233afb2c", + "41d94bac-3a53-47d6-a89e-583830104e15" + ], + "resourceType": "Users", "workloads": ["Teams", "Exchange", "ODSP"], - "createdBy": "66055c84-3b6e-4d14-9b9e-4c7f4105962e", + "createdBy": "admin@fabrikam.onmicrosoft.com", "createdDateTime": "2025-11-14T20:55:10.5427196Z", "lastUpdatedDateTime": "2025-11-14T20:55:10.5427196Z" } diff --git a/api-reference/beta/api/onlinemeeting-createorget.md b/api-reference/beta/api/onlinemeeting-createorget.md index f118d035029..48dd3232724 100644 --- a/api-reference/beta/api/onlinemeeting-createorget.md +++ b/api-reference/beta/api/onlinemeeting-createorget.md @@ -207,6 +207,7 @@ Content-Type: application/json "messageId": "0", "replyChainMessageId": null }, + "meetingType": "scheduled" } ``` @@ -244,7 +245,8 @@ Content-Type: application/json } ] }, - "subject": "Create a meeting with customId provided" + "subject": "Create a meeting with customId provided", + "meetingType": "scheduled" } ``` @@ -340,6 +342,7 @@ Content-Type: application/json "messageId": "1599805818399", "replyChainMessageId": null }, + "meetingType": "scheduled" } ``` diff --git a/api-reference/beta/api/onlinemeeting-get.md b/api-reference/beta/api/onlinemeeting-get.md index bf485d9a62c..f8d51b0412b 100644 --- a/api-reference/beta/api/onlinemeeting-get.md +++ b/api-reference/beta/api/onlinemeeting-get.md @@ -342,7 +342,12 @@ Content-Length: 1574 "allowedPresenters": "everyone", "allowMeetingChat": "enabled", "allowTeamworkReactions": true, - "meetingOptionsWebUrl": "https://teams.microsoft.com/meetingOptions/?meetingId=abc123" + "meetingOptionsWebUrl": "https://teams.microsoft.com/meetingOptions/?meetingId=abc123", + "cloudVideoInteropInfo": { + "tenantKey": "94f39e13-d027-4cfa-bcd3-4b8b0c2017ef", + "videoTeleconferenceId": "123456789", + "moreInfoWebUrl": "https://cvi.vendor.com/join-instructions" + } } ``` >**Note:** If 'Accept-Language: ja' is specified to indicate Japanese, for example, the response will include the following. @@ -426,7 +431,8 @@ The following example shows the response. "passcode": null }, "meetingOptionsWebUrl": "https://teams.microsoft.com/meetingOptions/?meetingId=abc123" - "meetingSpokenLanguageTag": "en-US" + "meetingSpokenLanguageTag": "en-US", + "meetingType": "scheduled" } ``` @@ -500,7 +506,8 @@ The following example shows the response. "sensitivityLabelAssignment": { "sensitivityLabelId": "c7f2d7a7-6a36-4a41-9a6b-0d2761a9f4f0" } - "meetingOptionsWebUrl": "https://teams.microsoft.com/meetingOptions/?meetingId=abc123" + "meetingOptionsWebUrl": "https://teams.microsoft.com/meetingOptions/?meetingId=abc123", + "meetingType": "scheduled" } ] } @@ -618,7 +625,8 @@ Content-Type: application/json "sensitivityLabelAssignment": { "sensitivityLabelId": "c7f2d7a7-6a36-4a41-9a6b-0d2761a9f4f0" }, - "meetingOptionsWebUrl": "https://teams.microsoft.com/meetingOptions/?meetingId=abc123" + "meetingOptionsWebUrl": "https://teams.microsoft.com/meetingOptions/?meetingId=abc123", + "meetingType": "scheduled" } ] } diff --git a/api-reference/beta/api/plannerplan-list-historyitems.md b/api-reference/beta/api/plannerplan-list-historyitems.md new file mode 100644 index 00000000000..3bb11ce6b7d --- /dev/null +++ b/api-reference/beta/api/plannerplan-list-historyitems.md @@ -0,0 +1,161 @@ +--- +title: "List historyItems" +description: "Get the history of changes made to tasks within a plan." +author: "praspati" +ms.date: 05/15/2026 +ms.localizationpriority: medium +ms.subservice: "planner" +doc_type: apiPageType +--- + +# List historyItems + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Get the [history](../resources/plannerhistoryitem.md) of changes made to tasks within a [plan](../resources/plannerplan.md). + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/plannerplan-list-historyitems-permissions.md)] + +## HTTP request + + +``` http +GET /planner/plans/{plan-id}/historyItems +``` + +## Optional query parameters + +This method supports the `$filter` OData query parameter to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +Use `$filter` on the **occurredDateTime** property to retrieve history items within a specific time range. + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [plannerHistoryItem](../resources/plannerhistoryitem.md) objects in the response body. + +## Examples + +### Request + +The following example shows how to get task [history items](../resources/plannerhistoryitem.md) for a plan with a date filter. + + +``` http +GET https://graph.microsoft.com/beta/planner/plans/nETqF5FS2LkCp935s-FIFm2QAFkHM/historyItems?$filter=occurredDateTime gt 2025-11-01T00:00:00Z and occurredDateTime lt 2025-12-01T00:00:00Z +``` + +### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#planner/plans('nETqF5FS2LkCp935s-FIFm2QAFkHM')/historyItems", + "value": [ + { + "@odata.type": "#microsoft.graph.taskHistoryItem", + "id": "historyItem-id-1", + "planId": "nETqF5FS2LkCp935s-FIFm2QAFkHM", + "entityId": "dYsWHy7-WEGMQsMaPBv_9ZUAOzQz", + "entityType": "task", + "eventType": "created", + "occurredDateTime": "2026-01-12T14:16:26.5896957Z", + "actor": { + "user": { + "displayName": null, + "id": "6699294c-9300-4ad8-a768-af3407b5e0fe" + }, + "application": { + "displayName": null, + "id": "09abbdfd-ed23-44ee-a2d9-a627a41c90f3" + } + }, + "oldData": null, + "newData": { + "createdBy": { + "user": { + "displayName": null, + "id": "6699294c-9300-4ad8-a768-af3407b5e0fe" + }, + "application": { + "displayName": null, + "id": "09abbdfd-ed23-44ee-a2d9-a627a41c90f3" + } + }, + "bucketId": "0LHuWF3PrUqKYzq-TcR3oJUADFn8", + "isArchived": false, + "title": "Initial Task Title", + "orderHint": "8584333795589189673P,", + "percentComplete": 0, + "priority": 5 + } + }, + { + "@odata.type": "#microsoft.graph.taskHistoryItem", + "id": "historyItem-id-2", + "planId": "nETqF5FS2LkCp935s-FIFm2QAFkHM", + "entityId": "dYsWHy7-WEGMQsMaPBv_9ZUAOzQz", + "entityType": "task", + "eventType": "updated", + "occurredDateTime": "2026-01-12T15:16:26.5896957Z", + "actor": { + "user": { + "displayName": null, + "id": "6699294c-9300-4ad8-a768-af3407b5e0fe" + }, + "application": { + "displayName": null, + "id": "09abbdfd-ed23-44ee-a2d9-a627a41c90f3" + } + }, + "oldData": { + "title": "Initial Task Title", + "percentComplete": 0 + }, + "newData": { + "title": "Updated Task Title", + "percentComplete": 50 + } + } + ] +} +``` diff --git a/api-reference/beta/api/security-detectionrule-delete.md b/api-reference/beta/api/security-detectionrule-delete.md deleted file mode 100644 index 1689696edfe..00000000000 --- a/api-reference/beta/api/security-detectionrule-delete.md +++ /dev/null @@ -1,103 +0,0 @@ ---- -title: "Delete detectionRule" -description: "Delete a custom detection rule." -author: "mmekler" -ms.localizationpriority: medium -ms.subservice: "security" -doc_type: apiPageType -ms.date: 06/21/2024 ---- - -# Delete detectionRule -Namespace: microsoft.graph.security - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -Delete a [custom detection rule](../resources/security-detectionrule.md). - -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - -## Permissions -Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - - -[!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-delete-permissions.md)] - -## HTTP request - - -```http -DELETE /security/rules/detectionRules/{ruleId} -``` - -## Request headers -|Name|Description| -|:---|:---| -|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| - -## Request body -Don't supply a request body for this method. - -## Response - -If successful, this method returns a `204 No Content` response code. - -## Examples - -### Request -The following example shows a request. -# [HTTP](#tab/http) - -```http -DELETE https://graph.microsoft.com/beta/security/rules/detectionRules/302 -``` - -# [C#](#tab/csharp) -[!INCLUDE [sample-code](../includes/snippets/csharp/delete-detectionrule-csharp-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Go](#tab/go) -[!INCLUDE [sample-code](../includes/snippets/go/delete-detectionrule-go-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Java](#tab/java) -[!INCLUDE [sample-code](../includes/snippets/java/delete-detectionrule-java-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [JavaScript](#tab/javascript) -[!INCLUDE [sample-code](../includes/snippets/javascript/delete-detectionrule-javascript-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PHP](#tab/php) -[!INCLUDE [sample-code](../includes/snippets/php/delete-detectionrule-php-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PowerShell](#tab/powershell) -[!INCLUDE [sample-code](../includes/snippets/powershell/delete-detectionrule-powershell-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Python](#tab/python) -[!INCLUDE [sample-code](../includes/snippets/python/delete-detectionrule-python-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - ---- - -### Response -The following example shows the response. ->**Note:** The response object shown here might be shortened for readability. - -```http -HTTP/1.1 204 No Content -``` - diff --git a/api-reference/beta/api/security-detectionrule-get.md b/api-reference/beta/api/security-detectionrule-get.md index bb4da07be11..920f150274d 100644 --- a/api-reference/beta/api/security-detectionrule-get.md +++ b/api-reference/beta/api/security-detectionrule-get.md @@ -1,50 +1,58 @@ --- title: "Get detectionRule" -description: "Read the properties and relationships of a custom detection rule." +description: "Read the properties and relationships of a detectionRule object." author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: apiPageType -ms.date: 06/21/2024 +ms.date: 05/25/2026 --- # Get detectionRule + Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Read the properties and relatonships of a [custom detection rule](../resources/security-detectionrule.md). - -With custom detections, you can proactively monitor for and respond to various events and system states, including suspected breach activity and misconfigured assets in their organization network. -Custom detection rules, which are written in [Kusto query language (KQL)](/azure/data-explorer/kusto/query/), automatically trigger [alerts](../resources/security-alert.md) and response actions when events occur that match a KQL query. +Read the properties and relationships of a [detectionRule](../resources/security-detectionrule.md) object. -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] +With custom detections, you can proactively monitor for and respond to various events and system states, including suspected breach activity and misconfigured assets in your organization's network. Custom detection rules, which are written in [Kusto query language (KQL)](/azure/data-explorer/kusto/query/), automatically trigger [alerts](../resources/security-alert.md) and automated actions when events occur that match a KQL query. ## Permissions + Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-get-permissions.md)] +[!INCLUDE [rbac-security-detection-rules-apis-read](../includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md)] + ## HTTP request -```http -GET /security/rules/detectionRules/{ruleId} +``` http +GET /security/rules/detectionRules/{detectionRuleId} ``` ## Optional query parameters + This method supports some of the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers + |Name|Description| |:---|:---| |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| ## Request body + Don't supply a request body for this method. ## Response @@ -54,124 +62,88 @@ If successful, this method returns a `200 OK` response code and a [microsoft.gra ## Examples ### Request + The following example shows a request. -# [HTTP](#tab/http) + -```msgraph-interactive -GET https://graph.microsoft.com/beta/security/rules/detectionRules/7506 +``` http +GET https://graph.microsoft.com/beta/security/rules/detectionRules/office-encoded-powershell ``` -# [C#](#tab/csharp) -[!INCLUDE [sample-code](../includes/snippets/csharp/get-detectionrule-csharp-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Go](#tab/go) -[!INCLUDE [sample-code](../includes/snippets/go/get-detectionrule-go-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Java](#tab/java) -[!INCLUDE [sample-code](../includes/snippets/java/get-detectionrule-java-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [JavaScript](#tab/javascript) -[!INCLUDE [sample-code](../includes/snippets/javascript/get-detectionrule-javascript-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PHP](#tab/php) -[!INCLUDE [sample-code](../includes/snippets/php/get-detectionrule-php-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PowerShell](#tab/powershell) -[!INCLUDE [sample-code](../includes/snippets/powershell/get-detectionrule-powershell-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Python](#tab/python) -[!INCLUDE [sample-code](../includes/snippets/python/get-detectionrule-python-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - ---- - ### Response + The following example shows the response. + >**Note:** The response object shown here might be shortened for readability. + -```http +``` http HTTP/1.1 200 OK Content-Type: application/json { "@odata.type": "#microsoft.graph.security.detectionRule", - "id": "7506", - "displayName": "ban file", - "isEnabled": true, - "createdBy": "NaderK@winatptestlic06.ccsctp.net", - "createdDateTime": "2021-02-28T16:28:15.3863467Z", - "lastModifiedDateTime": "2023-05-24T09:26:11.8630516Z", - "lastModifiedBy": "GlobalAdmin@unifiedrbactest3.ccsctp.net", - "detectorId": "67895317-b2a8-4ac3-8f8b-fa6b7765f2fe", + "id": "office-encoded-powershell", + "displayName": "Suspicious encoded PowerShell from Office", + "description": "Detects encoded PowerShell processes launched by Office applications, a common phishing payload pattern.", + "status": "enabled", + "createdBy": "alice@contoso.com", + "createdDateTime": "2026-05-25T10:15:00Z", + "lastModifiedBy": "alice@contoso.com", + "lastModifiedDateTime": "2026-05-25T10:15:00Z", "queryCondition": { - "queryText": "DeviceFileEvents\r\n| where Timestamp > ago(1h)\r\n| where FileName == \"ifz30zlx.dll\"", - "lastModifiedDateTime": null + "queryText": "DeviceProcessEvents | where InitiatingProcessFileName in~ ('winword.exe','excel.exe','outlook.exe') | where FileName == 'powershell.exe' | where ProcessCommandLine has '-enc'" }, "schedule": { - "period": "24H", - "nextRunDateTime": "2023-06-26T08:52:06.1766667Z" - }, - "lastRunDetails": { - "lastRunDateTime": "2023-06-25T08:52:06.1766667Z", - "status": null, - "failureReason": null, - "errorCode": null + "frequency": "PT1H" }, "detectionAction": { "alertTemplate": { - "title": "unwanted dll", - "description": "test", - "severity": "low", - "category": "Malware", - "recommendedActions": null, - "mitreTechniques": [], - "impactedAssets": [] - }, - "organizationalScope": null, - "responseActions": [ - { - "@odata.type": "#microsoft.graph.security.restrictAppExecutionResponseAction", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.initiateInvestigationResponseAction", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.collectInvestigationPackageResponseAction", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.runAntivirusScanResponseAction", - "identifier": "deviceId" + "title": "Suspicious encoded PowerShell from Office", + "description": "An Office app launched an encoded PowerShell command, which may indicate phishing-driven code execution.", + "severity": "high", + "recommendedActions": "Investigate the parent Office document, isolate the device, and review the user's recent email activity.", + "entityMappings": { + "accounts": [ + { + "nameColumn": "AccountName", + "sidColumn": "AccountSid" + } + ] }, - { - "@odata.type": "#microsoft.graph.security.isolateDeviceResponseAction", - "isolationType": "full", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.blockFileResponseAction", - "identifier": "sha1", - "deviceGroupNames": [] - } - ] + "tactics": [ + { + "tactic": "Execution", + "techniques": [ + { + "technique": "T1059.001" + } + ] + } + ] + }, + "automatedActions": { + "isolateDevices": [ + { + "deviceIdColumn": "DeviceId", + "isolationType": "full" + } + ], + "initiateInvestigations": [ + { + "deviceIdColumn": "DeviceId" + } + ] + } } } -``` - +``` \ No newline at end of file diff --git a/api-reference/beta/api/security-detectionrule-list.md b/api-reference/beta/api/security-detectionrule-list.md deleted file mode 100644 index 6cd0408c730..00000000000 --- a/api-reference/beta/api/security-detectionrule-list.md +++ /dev/null @@ -1,278 +0,0 @@ ---- -title: "List detectionRules" -description: "Get a list of the custom detection rules and their properties." -author: "mmekler" -ms.localizationpriority: medium -ms.subservice: "security" -doc_type: apiPageType -ms.date: 06/21/2024 ---- - -# List detectionRules -Namespace: microsoft.graph.security - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -Get a list of [custom detection rules](../resources/security-detectionrule.md). -With custom detections, you can proactively monitor for and respond to various events and system states, including suspected breach activity and misconfigured assets in their organization network. -Custom detection rules, which are written in [Kusto query language (KQL)](/azure/data-explorer/kusto/query/), automatically trigger [alerts](../resources/security-alert.md) and response actions once there are events matching their KQL queries. - -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - -## Permissions -Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - - -[!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-list-permissions.md)] - -## HTTP request - - -```http -GET /security/rules/detectionRules -``` - -## Optional query parameters -This method supports some of the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). - -## Request headers -|Name|Description| -|:---|:---| -|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| - -## Request body -Don't supply a request body for this method. - -## Response - -If successful, this method returns a `200 OK` response code and a collection of [detectionRule](../resources/security-detectionrule.md) objects in the response body. - -## Examples - -### Request -The following example shows a request. -# [HTTP](#tab/http) - -```msgraph-interactive -GET https://graph.microsoft.com/beta/security/rules/detectionRules?$top=3 -``` - -# [C#](#tab/csharp) -[!INCLUDE [sample-code](../includes/snippets/csharp/list-detectionrule-csharp-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Go](#tab/go) -[!INCLUDE [sample-code](../includes/snippets/go/list-detectionrule-go-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Java](#tab/java) -[!INCLUDE [sample-code](../includes/snippets/java/list-detectionrule-java-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [JavaScript](#tab/javascript) -[!INCLUDE [sample-code](../includes/snippets/javascript/list-detectionrule-javascript-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PHP](#tab/php) -[!INCLUDE [sample-code](../includes/snippets/php/list-detectionrule-php-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PowerShell](#tab/powershell) -[!INCLUDE [sample-code](../includes/snippets/powershell/list-detectionrule-powershell-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Python](#tab/python) -[!INCLUDE [sample-code](../includes/snippets/python/list-detectionrule-python-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - ---- - -### Response -The following example shows the response. ->**Note:** The response object shown here might be shortened for readability. - -```http -HTTP/1.1 200 OK -Content-Type: application/json - -{ - "value": [ - { - "@odata.type": "#microsoft.graph.security.detectionRule", - "id": "7506", - "displayName": "ban file", - "isEnabled": true, - "createdBy": "NaderK@winatptestlic06.ccsctp.net", - "createdDateTime": "2021-02-28T16:28:15.3863467Z", - "lastModifiedDateTime": "2023-05-24T09:26:11.8630516Z", - "lastModifiedBy": "GlobalAdmin@unifiedrbactest3.ccsctp.net", - "detectorId": "67895317-b2a8-4ac3-8f8b-fa6b7765f2fe", - "queryCondition": { - "queryText": "DeviceFileEvents\r\n| where Timestamp > ago(1h)\r\n| where FileName == \"ifz30zlx.dll\"", - "lastModifiedDateTime": null - }, - "schedule": { - "period": "24H", - "nextRunDateTime": "2023-06-26T08:52:06.1766667Z" - }, - "lastRunDetails": { - "lastRunDateTime": "2023-06-25T08:52:06.1766667Z", - "status": null, - "failureReason": null, - "errorCode": null - }, - "detectionAction": { - "alertTemplate": { - "title": "unwanted dll", - "description": "test", - "severity": "low", - "category": "Malware", - "recommendedActions": null, - "mitreTechniques": [], - "impactedAssets": [] - }, - "organizationalScope": null, - "responseActions": [ - { - "@odata.type": "#microsoft.graph.security.restrictAppExecutionResponseAction", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.initiateInvestigationResponseAction", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.collectInvestigationPackageResponseAction", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.runAntivirusScanResponseAction", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.isolateDeviceResponseAction", - "isolationType": "full", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.blockFileResponseAction", - "identifier": "sha1", - "deviceGroupNames": [] - } - ] - } - }, - { - "@odata.type": "#microsoft.graph.security.detectionRule", - "id": "8575", - "displayName": "Continuous_EmailAttachmentInfo_Mod300", - "isEnabled": true, - "createdBy": "rony@winatptestlic06.ccsctp.net", - "createdDateTime": "2021-11-03T21:32:01.6144651Z", - "lastModifiedDateTime": "2022-11-03T19:27:14.4187141Z", - "lastModifiedBy": "InESecAdmin@winatptestlic06.ccsctp.net", - "detectorId": "56ef4994-fe31-4ac9-b29f-0ca2f2cc9112", - "queryCondition": { - "queryText": "EmailAttachmentInfo\r\n| extend second = datetime_diff('second',now(),Timestamp)\r\n| where second % 300 == 0 ", - "lastModifiedDateTime": "2022-11-03T19:27:14.4331537Z" - }, - "schedule": { - "period": "0", - "nextRunDateTime": "2021-11-03T21:32:01.7863185Z" - }, - "lastRunDetails": { - "lastRunDateTime": "2021-11-03T21:32:01.7863185Z", - "status": null, - "failureReason": null, - "errorCode": null - }, - "detectionAction": { - "alertTemplate": { - "title": "EmailAttachmentInfo", - "description": "EmailAttachmentInfo", - "severity": "low", - "category": "Exfiltration", - "recommendedActions": "EmailAttachmentInfo", - "mitreTechniques": [], - "impactedAssets": [ - { - "@odata.type": "#microsoft.graph.security.impactedMailboxAsset", - "identifier": "recipientEmailAddress" - }, - { - "@odata.type": "#microsoft.graph.security.impactedUserAsset", - "identifier": "recipientObjectId" - } - ] - }, - "organizationalScope": null, - "responseActions": [ - { - "@odata.type": "#microsoft.graph.security.moveToDeletedItemsResponseAction", - "identifier": "networkMessageId, recipientEmailAddress" - } - ] - } - }, - { - "@odata.type": "#microsoft.graph.security.detectionRule", - "id": "9794", - "displayName": "UPDATED DET: Office/LoLBin Network Connection to Low-Reputation TLD", - "isEnabled": true, - "createdBy": "NaderK@winatptestlic06.ccsctp.net", - "createdDateTime": "2022-02-02T10:26:01.7708581Z", - "lastModifiedDateTime": "2022-02-02T10:26:01.7708581Z", - "lastModifiedBy": "NaderK@winatptestlic06.ccsctp.net", - "detectorId": "67aa92a1-b04b-4f2a-a223-236968a3da96", - "queryCondition": { - "queryText": "//https://www.spamhaus.org/statistics/tlds/ http://www.surbl.org/tld https://www.iana.org/domains/root/db https://unit42.paloaltonetworks.com/top-level-domains-cybercrime/\r\nDeviceNetworkEvents\r\n| where isnotempty(RemoteUrl) and RemoteIPType == \"Public\"\r\n| where InitiatingProcessFileName in~ (\"winword.exe\", \"excel.exe\", \"powerpnt.exe\", \"rundll32.exe\", \"regsvr32.exe\", \"certutil.exe\", \"bitsadmin.exe\", \"wscript.exe\", \"cscript.exe\", \"powershell.exe\", \"pwsh.exe\", \"powershell_ise.exe\")\r\n| extend TopLevelDomain=tolower(extract(@\"([A-Za-z0-9-]{1,63}\\.)+([A-Za-z]{2,10})\", 2, RemoteUrl))\r\n| where TopLevelDomain in (\"xyz\", \"top\", \"live\", \"loan\", \"club\", \"surf\", \"work\", \"biz\", \"ryukyu\", \"press\", \"ltd\", \"bid\", \"vip\", \"online\", \"download\" \"buzz\", \"cam\", \"ru\", \"cn\", \"ci\", \"ga\", \"gq\", \"tk\", \"tw\", \"ml\", \"cf\", \"cfd\", \"icu\", \"cm\")\r\n| extend TimeDiff=datetime_diff(\"Second\", Timestamp, InitiatingProcessCreationTime)\r\n| where TimeDiff < 30\r\n| project-reorder Timestamp, DeviceName, RemoteUrl, TopLevelDomain, TimeDiff, InitiatingProcessCommandLine, *\r\n//| summarize count() by InitiatingProcessFolderPath, TopLevelDomain, RemoteUrl", - "lastModifiedDateTime": null - }, - "schedule": { - "period": "1H", - "nextRunDateTime": "2023-06-25T10:17:06.4366667Z" - }, - "lastRunDetails": { - "lastRunDateTime": "2023-06-25T09:17:06.4366667Z", - "status": null, - "failureReason": null, - "errorCode": null - }, - "detectionAction": { - "alertTemplate": { - "title": "updated Office/LoLBin Network Connection to Low-Reputation TLD", - "description": "This is a custom detection created by the Centene Detection Engineering team.\n\nAn Office application or Living-Off-The-Land Binary made an immediate remote connection to a domain with a low-reputation top level domain after execution. This activity is suspicious as threat actors typically use low-reputation TLDs for malicious purposes, such as hosting payloads for potential targets. These TLDs are often abused because of their low cost and lack of oversite. The TLDs included in the list cover destinations that have either a high count or a high percentage of low-reputation sites. ", - "severity": "low", - "category": "CommandAndControl", - "recommendedActions": "Check the reputation of the RemoteUrl through OSINT tools such as VirusTotal and Hybrid Analysis.\n\nReview the document and device timeline for additional context and IOCs. \n\nCheck for related alerts on the associated endpoint. ", - "mitreTechniques": ["T1071.001"], - "impactedAssets": [ - { - "@odata.type": "#microsoft.graph.security.impactedDeviceAsset", - "identifier": "deviceId" - } - ] - }, - "organizationalScope": { - "scopeType": "deviceGroup", - "scopeNames": ["UnassignedGroup"] - }, - "responseActions": [] - } - } - ] -} -``` - diff --git a/api-reference/beta/api/security-detectionrule-post-detectionrules.md b/api-reference/beta/api/security-detectionrule-post-detectionrules.md deleted file mode 100644 index c4e2462113c..00000000000 --- a/api-reference/beta/api/security-detectionrule-post-detectionrules.md +++ /dev/null @@ -1,161 +0,0 @@ ---- -title: "Create detectionRule" -description: "Create a new custom detection rule." -author: "mmekler" -ms.localizationpriority: medium -ms.subservice: "security" -doc_type: apiPageType -ms.date: 06/21/2024 ---- - -# Create detectionRule -Namespace: microsoft.graph.security - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -Create a [custom detection rule](../resources/security-detectionrule.md). -With custom detections, you can proactively monitor for and respond to various events and system states, including suspected breach activity and misconfigured assets in their organization's network. -Custom detection rules, which are written in [Kusto query language (KQL)](/azure/data-explorer/kusto/query/), automatically trigger [alerts](../resources/security-alert.md) and response actions once there are events matching their KQL queries. - - -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - -## Permissions -Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - - -[!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-post-detectionrules-permissions.md)] - -## HTTP request - - -```http -POST /security/rules/detectionRules -``` - -## Request headers -|Name|Description| -|:---|:---| -|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| -|Content-Type|application/json. Required.| - -## Request body -Within the request body, supply a [microsoft.graph.security.detectionRule](../resources/security-detectionrule.md). Some metadata fields are unnecessary and are ignored, such as 'createdBy' and 'lastModifiedDateTime'. - -## Response - -If successful, this method returns a `201 Created` response code and a [microsoft.graph.security.detectionRule](../resources/security-detectionrule.md) object in the response body. - -## Examples - -### Request -The following example shows a request. - -```http -POST https://graph.microsoft.com/beta/security/rules/detectionRules -Content-Type: application/json -{ - "displayName": "Some rule name", - "isEnabled": true, - "queryCondition": { - "queryText": "DeviceProcessEvents | take 1" - }, - "schedule": { - "period": "12H" - }, - "detectionAction": { - "alertTemplate": { - "title": "Some alert title", - "description": "Some alert description", - "severity": "medium", - "category": "Execution", - "recommendedActions": null, - "mitreTechniques": [], - "impactedAssets": [ - { - "@odata.type": "#microsoft.graph.security.impactedDeviceAsset", - "identifier": "deviceId" - } - ] - }, - "organizationalScope": null, - "responseActions": [ - { - "@odata.type": "#microsoft.graph.security.isolateDeviceResponseAction", - "identifier": "deviceId", - "isolationType": "full" - } - ] - } -} -``` - -### Response -The following example shows the response. ->**Note:** The response object shown here might be shortened for readability. - -```http -HTTP/1.1 201 Created -Content-Type: application/json - -{ - "@odata.type": "#microsoft.graph.security.detectionRule", - "id": "35079", - "displayName": "Some rule name", - "isEnabled": true, - "createdBy": "MichaelMekler@winatptestlic06.ccsctp.net", - "createdDateTime": "2023-06-25T09:37:28.6149005Z", - "lastModifiedDateTime": "2023-06-25T09:37:28.6149005Z", - "lastModifiedBy": "MichaelMekler@winatptestlic06.ccsctp.net", - "detectorId": "67aa92a1-b04b-4f2a-a223-236968a3da96", - "queryCondition": { - "queryText": "DeviceProcessEvents | take 1", - "lastModifiedDateTime": null - }, - "schedule": { - "period": "12H", - "nextRunDateTime": "2023-06-25T09:37:28.6149005Z" - }, - "lastRunDetails": { - "lastRunDateTime": null, - "status": null, - "failureReason": null, - "errorCode": null - }, - "detectionAction": { - "alertTemplate": { - "title": "Some alert title", - "description": "Some alert description", - "severity": "medium", - "category": "Execution", - "recommendedActions": null, - "mitreTechniques": [], - "impactedAssets": [ - { - "@odata.type": "#microsoft.graph.security.impactedDeviceAsset", - "identifier": "deviceId" - } - ] - }, - "organizationalScope": null, - "responseActions": [ - { - "@odata.type": "#microsoft.graph.security.isolateDeviceResponseAction", - "isolationType": "full", - "identifier": "deviceId" - } - ] - } -} -``` - diff --git a/api-reference/beta/api/security-detectionrule-update.md b/api-reference/beta/api/security-detectionrule-update.md index e0a9e737946..2ffda6e4dfa 100644 --- a/api-reference/beta/api/security-detectionrule-update.md +++ b/api-reference/beta/api/security-detectionrule-update.md @@ -1,152 +1,162 @@ --- title: "Update detectionRule" -description: "Update the properties of a custom detection rule." +description: "Update the properties of a detectionRule object." author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: apiPageType -ms.date: 06/21/2024 +ms.date: 05/25/2026 --- # Update detectionRule + Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Update the properties of a [custom detection rule](../resources/security-detectionrule.md). - -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] +Update the properties of a [detectionRule](../resources/security-detectionrule.md) object. ## Permissions + Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-update-permissions.md)] +[!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] + ## HTTP request -```http -PATCH /security/rules/detectionRules/{ruleId} +``` http +PATCH /security/rules/detectionRules/{detectionRuleId} ``` ## Request headers -| Name | Description | -|:--------------|:----------------------------| -| Authorization |Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| -| Content-Type | application/json. Required. | + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| ## Request body -Provide the properties of a [microsoft.graph.security.detectionRule](../resources/security-detectionrule.md) to update, and those properties only. -The properties that can be updated are specified in the following table: - -| Property | Type | Description | -|:-------------------------------------------------|:---------------------------------------------------------------------------------------------|:-----------------------------------------------------------------| -| displayName | String | Optional. | -| isEnabled | Boolean | Optional. | -| detectionAction/alertTemplate/title | String | Optional. | -| detectionAction/alertTemplate/category | String | Optional. | -| detectionAction/alertTemplate/description | String | Optional. | -| detectionAction/alertTemplate/recommendedActions | String | Optional. Provide 'null' to delete the existing response actions | -| detectionAction/alertTemplate/severity | [microsoft.graph.alertSeverity](../resources/enums.md#alertseverity-values) | Optional. | -| detectionAction/alertTemplate/impactedAssets | [microsoft.graph.security.impactedAsset](../resources/security-impactedasset.md) | Optional. Provide 'null' to delete the existing impacted assets. | -| detectionAction/responseActions | [microsoft.graph.security.responseAction](../resources/security-responseaction.md) | Optional. | -| detectionAction/organizationalScope | [microsoft.graph.security.organizationalScope](../resources/security-organizationalscope.md) | Optional. | -| queryCondition/queryText | String | Optional. | -| schedule/period | String | Optional. | +[!INCLUDE [table-intro](../../includes/update-property-table-intro.md)] + +|Property|Type|Description| +|:---|:---|:---| +|description|String|A user-supplied description of the detection rule.| +|detectionAction|[microsoft.graph.security.detectionAction](../resources/security-detectionaction.md)|The actions taken when a detection is made by this rule, including the alert that is created and any automated response actions.| +|displayName|String|The display name of the rule.| +|isEnabled|Boolean|**Deprecated.** Use **status** instead. The `isEnabled` property will be removed from this resource on 2026-10-01.| +|queryCondition|[microsoft.graph.security.queryCondition](../resources/security-querycondition.md)|The advanced hunting query that defines the detection logic of this rule.| +|schedule|[microsoft.graph.security.ruleSchedule](../resources/security-ruleschedule.md)|The triggering schedule of this rule.| +|status|[microsoft.graph.security.detectionRuleStatus](../resources/enums-security.md#detectionrulestatus-values)|The current run status of the rule. The possible values are: `enabled`, `disabled`, `autoDisabled`, `unknownFutureValue`.| ## Response -If successful, this method returns a `200 OK` response code and an updated [microsoft.graph.security.detectionRule](../resources/security-detectionrule.md) object in the response body. +If successful, this method returns a `200 OK` response code and a [microsoft.graph.security.detectionRule](../resources/security-detectionrule.md) object in the response body. ## Examples ### Request + The following example shows a request. + -```http -PATCH https://graph.microsoft.com/beta/security/rules/detectionRules/35079 +``` http +PATCH https://graph.microsoft.com/beta/security/rules/detectionRules/office-encoded-powershell Content-Type: application/json + { - "schedule": { - "period": "24H" - }, - "detectionAction": { - "alertTemplate": { - "title": "Different alert title" - } + "status": "disabled", + "queryCondition": { + "queryText": "DeviceProcessEvents | where InitiatingProcessFileName in~ ('winword.exe','excel.exe','outlook.exe') | where FileName == 'powershell.exe' | where ProcessCommandLine has '-enc'" } } ``` - ### Response + The following example shows the response. + >**Note:** The response object shown here might be shortened for readability. + -```http +``` http HTTP/1.1 200 OK Content-Type: application/json { "@odata.type": "#microsoft.graph.security.detectionRule", - "id": "35079", - "displayName": "Some rule name", - "isEnabled": true, - "createdBy": "MichaelMekler@winatptestlic06.ccsctp.net", - "createdDateTime": "2023-06-25T09:37:28.6149005Z", - "lastModifiedDateTime": "2023-06-25T09:38:09.5960938Z", - "lastModifiedBy": "MichaelMekler@winatptestlic06.ccsctp.net", - "detectorId": "67aa92a1-b04b-4f2a-a223-236968a3da96", + "id": "office-encoded-powershell", + "displayName": "Suspicious encoded PowerShell from Office", + "description": "Detects encoded PowerShell processes launched by Office applications, a common phishing payload pattern.", + "status": "disabled", + "createdBy": "alice@contoso.com", + "createdDateTime": "2026-05-25T10:15:00Z", + "lastModifiedBy": "alice@contoso.com", + "lastModifiedDateTime": "2026-05-28T14:30:00Z", "queryCondition": { - "queryText": "DeviceProcessEvents | take 1", - "lastModifiedDateTime": null + "queryText": "DeviceProcessEvents | where InitiatingProcessFileName in~ ('winword.exe','excel.exe','outlook.exe') | where FileName == 'powershell.exe' | where ProcessCommandLine has '-enc'" }, "schedule": { - "period": "24H", - "nextRunDateTime": "2023-06-25T09:37:28.6149005Z" - }, - "lastRunDetails": { - "lastRunDateTime": null, - "status": null, - "failureReason": null, - "errorCode": null + "frequency": "PT1H" }, "detectionAction": { "alertTemplate": { - "title": "Different alert title", - "description": "Some alert description", - "severity": "medium", - "category": "Execution", - "recommendedActions": null, - "mitreTechniques": [], - "impactedAssets": [ + "title": "Suspicious encoded PowerShell from Office", + "description": "An Office app launched an encoded PowerShell command, which may indicate phishing-driven code execution.", + "severity": "high", + "recommendedActions": "Investigate the parent Office document, isolate the device, and review the user's recent email activity.", + "entityMappings": { + "accounts": [ + { + "nameColumn": "AccountName", + "sidColumn": "AccountSid" + } + ] + }, + "tactics": [ { - "@odata.type": "#microsoft.graph.security.impactedDeviceAsset", - "identifier": "deviceId" + "tactic": "Execution", + "techniques": [ + { + "technique": "T1059.001" + } + ] } ] }, - "organizationalScope": null, - "responseActions": [ - { - "@odata.type": "#microsoft.graph.security.isolateDeviceResponseAction", - "isolationType": "full", - "identifier": "deviceId" - } - ] + "automatedActions": { + "isolateDevices": [ + { + "deviceIdColumn": "DeviceId", + "isolationType": "full" + } + ], + "initiateInvestigations": [ + { + "deviceIdColumn": "DeviceId" + } + ] + } } } -``` - +``` \ No newline at end of file diff --git a/api-reference/beta/api/security-rulesroot-delete-detectionrules.md b/api-reference/beta/api/security-rulesroot-delete-detectionrules.md new file mode 100644 index 00000000000..7101572d78c --- /dev/null +++ b/api-reference/beta/api/security-rulesroot-delete-detectionrules.md @@ -0,0 +1,81 @@ +--- +title: "Delete detectionRule" +description: "Delete a detectionRule object." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: apiPageType +ms.date: 05/25/2026 +--- + +# Delete detectionRule + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Delete a [detectionRule](../resources/security-detectionrule.md) object. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-delete-detectionrules-permissions.md)] + +[!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] + +## HTTP request + + +``` http +DELETE /security/rules/detectionRules/{detectionRuleId} +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request + +The following example shows a request. + + +``` http +DELETE https://graph.microsoft.com/beta/security/rules/detectionRules/4790e8ec-9488-3dde-c3a6-be0c4ba14cf9 +``` + +### Response + +The following example shows the response. + + +``` http +HTTP/1.1 204 No Content +``` \ No newline at end of file diff --git a/api-reference/beta/api/security-rulesroot-list-detectionrules.md b/api-reference/beta/api/security-rulesroot-list-detectionrules.md new file mode 100644 index 00000000000..546928abb48 --- /dev/null +++ b/api-reference/beta/api/security-rulesroot-list-detectionrules.md @@ -0,0 +1,151 @@ +--- +title: "List detectionRule objects" +description: "Get a list of detectionRule objects and their properties." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: apiPageType +ms.date: 05/25/2026 +--- + +# List detectionRule objects + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Get a list of [detectionRule](../resources/security-detectionrule.md) objects and their properties. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-list-detectionrules-permissions.md)] + +[!INCLUDE [rbac-security-detection-rules-apis-read](../includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md)] + +## HTTP request + + +``` http +GET /security/rules/detectionRules +``` + +## Optional query parameters + +This method supports the `$select`, `$top`, `$skip`, `$count`, `$filter`, and `$orderby` [OData query parameters](/graph/query-parameters) to help customize the response. For the per-property list of supported `$filter` operators and `$orderby` properties, see [detectionRule properties](../resources/security-detectionrule.md#properties). + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [microsoft.graph.security.detectionRule](../resources/security-detectionrule.md) objects in the response body. + +## Examples + +### Request + +The following example shows a request. + + +``` http +GET https://graph.microsoft.com/beta/security/rules/detectionRules +``` + +### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": [ + { + "@odata.type": "#microsoft.graph.security.detectionRule", + "id": "office-encoded-powershell", + "displayName": "Suspicious encoded PowerShell from Office", + "description": "Detects encoded PowerShell processes launched by Office applications, a common phishing payload pattern.", + "status": "enabled", + "createdBy": "alice@contoso.com", + "createdDateTime": "2026-05-25T10:15:00Z", + "lastModifiedBy": "alice@contoso.com", + "lastModifiedDateTime": "2026-05-25T10:15:00Z", + "queryCondition": { + "queryText": "DeviceProcessEvents | where InitiatingProcessFileName in~ ('winword.exe','excel.exe','outlook.exe') | where FileName == 'powershell.exe' | where ProcessCommandLine has '-enc'" + }, + "schedule": { + "frequency": "PT1H" + }, + "detectionAction": { + "alertTemplate": { + "title": "Suspicious encoded PowerShell from Office", + "description": "An Office app launched an encoded PowerShell command, which may indicate phishing-driven code execution.", + "severity": "high", + "recommendedActions": "Investigate the parent Office document, isolate the device, and review the user's recent email activity.", + "entityMappings": { + "accounts": [ + { + "nameColumn": "AccountName", + "sidColumn": "AccountSid" + } + ] + }, + "tactics": [ + { + "tactic": "Execution", + "techniques": [ + { + "technique": "T1059.001" + } + ] + } + ] + }, + "automatedActions": { + "isolateDevices": [ + { + "deviceIdColumn": "DeviceId", + "isolationType": "full" + } + ], + "initiateInvestigations": [ + { + "deviceIdColumn": "DeviceId" + } + ] + } + } + } + ] +} +``` \ No newline at end of file diff --git a/api-reference/beta/api/security-rulesroot-post-detectionrules.md b/api-reference/beta/api/security-rulesroot-post-detectionrules.md new file mode 100644 index 00000000000..ee48784dcaa --- /dev/null +++ b/api-reference/beta/api/security-rulesroot-post-detectionrules.md @@ -0,0 +1,213 @@ +--- +title: "Create detectionRule" +description: "Create a new detectionRule object." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: apiPageType +ms.date: 05/25/2026 +--- + +# Create detectionRule + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Create a new [detectionRule](../resources/security-detectionrule.md) object. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-post-detectionrules-permissions.md)] + +[!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] + +## HTTP request + + +``` http +POST /security/rules/detectionRules +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| + +## Request body + +In the request body, supply a JSON representation of the [microsoft.graph.security.detectionRule](../resources/security-detectionrule.md) object. + +You can specify the following properties and relationships when creating a **detectionRule**. + +|Property|Type|Description| +|:---|:---|:---| +|description|String|A user-supplied description of the detection rule. Optional.| +|detectionAction|[microsoft.graph.security.detectionAction](../resources/security-detectionaction.md)|The actions taken when a detection is made by this rule, including the alert that is created and any automated response actions. Optional.| +|displayName|String|The display name of the rule. Required.| +|id|String|The client-provided unique identifier of the rule. Required.| +|isEnabled|Boolean|**Deprecated.** Use **status** instead. The `isEnabled` property will be removed from this resource on 2026-10-01. Optional.| +|queryCondition|[microsoft.graph.security.queryCondition](../resources/security-querycondition.md)|The advanced hunting query that defines the detection logic of this rule. Required.| +|schedule|[microsoft.graph.security.ruleSchedule](../resources/security-ruleschedule.md)|The triggering schedule of this rule. Required.| +|status|[microsoft.graph.security.detectionRuleStatus](../resources/enums-security.md#detectionrulestatus-values)|The current run status of the rule. The possible values are: `enabled`, `disabled`, `autoDisabled`, `unknownFutureValue`. Required.| + +## Response + +If successful, this method returns a `201 Created` response code and a [microsoft.graph.security.detectionRule](../resources/security-detectionrule.md) object in the response body. + +## Examples + +### Request + +The following example shows a request. + + +``` http +POST https://graph.microsoft.com/beta/security/rules/detectionRules +Content-Type: application/json + +{ + "@odata.type": "#microsoft.graph.security.detectionRule", + "id": "office-encoded-powershell", + "displayName": "Suspicious encoded PowerShell from Office", + "description": "Detects encoded PowerShell processes launched by Office applications, a common phishing payload pattern.", + "status": "enabled", + "queryCondition": { + "queryText": "DeviceProcessEvents | where InitiatingProcessFileName in~ ('winword.exe','excel.exe','outlook.exe') | where FileName == 'powershell.exe' | where ProcessCommandLine has '-enc'" + }, + "schedule": { + "frequency": "PT1H" + }, + "detectionAction": { + "alertTemplate": { + "title": "Suspicious encoded PowerShell from Office", + "description": "An Office app launched an encoded PowerShell command, which may indicate phishing-driven code execution.", + "severity": "high", + "recommendedActions": "Investigate the parent Office document, isolate the device, and review the user's recent email activity.", + "entityMappings": { + "accounts": [ + { + "nameColumn": "AccountName", + "ntDomainColumn": "AccountDomain", + "sidColumn": "AccountSid" + } + ], + "hosts": [ + { + "deviceIdColumn": "DeviceId", + "nameColumn": "DeviceName" + } + ], + "files": [ + { + "nameColumn": "FileName", + "sha1Column": "SHA1", + "sha256Column": "SHA256" + } + ] + }, + "tactics": [ + { + "tactic": "Execution", + "techniques": [ + { + "technique": "T1059.001" + } + ] + } + ] + } + } +} +``` + +### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +``` http +HTTP/1.1 201 Created +Content-Type: application/json +Location: https://graph.microsoft.com/beta/security/rules/detectionRules/office-encoded-powershell + +{ + "@odata.type": "#microsoft.graph.security.detectionRule", + "id": "office-encoded-powershell", + "displayName": "Suspicious encoded PowerShell from Office", + "description": "Detects encoded PowerShell processes launched by Office applications, a common phishing payload pattern.", + "status": "enabled", + "createdBy": "alice@contoso.com", + "createdDateTime": "2026-05-25T10:15:00Z", + "lastModifiedBy": "alice@contoso.com", + "lastModifiedDateTime": "2026-05-25T10:15:00Z", + "queryCondition": { + "queryText": "DeviceProcessEvents | where InitiatingProcessFileName in~ ('winword.exe','excel.exe','outlook.exe') | where FileName == 'powershell.exe' | where ProcessCommandLine has '-enc'" + }, + "schedule": { + "frequency": "PT1H" + }, + "detectionAction": { + "alertTemplate": { + "title": "Suspicious encoded PowerShell from Office", + "description": "An Office app launched an encoded PowerShell command, which may indicate phishing-driven code execution.", + "severity": "high", + "recommendedActions": "Investigate the parent Office document, isolate the device, and review the user's recent email activity.", + "entityMappings": { + "accounts": [ + { + "nameColumn": "AccountName", + "sidColumn": "AccountSid" + } + ] + }, + "tactics": [ + { + "tactic": "Execution", + "techniques": [ + { + "technique": "T1059.001" + } + ] + } + ] + }, + "automatedActions": { + "isolateDevices": [ + { + "deviceIdColumn": "DeviceId", + "isolationType": "full" + } + ], + "initiateInvestigations": [ + { + "deviceIdColumn": "DeviceId" + } + ] + } + } +} +``` \ No newline at end of file diff --git a/api-reference/beta/api/virtualeventsroot-list-townhalls.md b/api-reference/beta/api/virtualeventsroot-list-townhalls.md index fa1db63d721..c6933dce2d3 100644 --- a/api-reference/beta/api/virtualeventsroot-list-townhalls.md +++ b/api-reference/beta/api/virtualeventsroot-list-townhalls.md @@ -128,6 +128,7 @@ Content-Type: application/json "tenantId": "77229959-e479-4a73-b6e0-ddac27be315c" } ], + "isRegistrationRequired": false, "settings": { "isAttendeeEmailNotificationEnabled": false }, diff --git a/api-reference/beta/api/virtualeventsroot-list-webinars.md b/api-reference/beta/api/virtualeventsroot-list-webinars.md index 6e6e2a805a2..927ec702b78 100644 --- a/api-reference/beta/api/virtualeventsroot-list-webinars.md +++ b/api-reference/beta/api/virtualeventsroot-list-webinars.md @@ -155,6 +155,7 @@ Content-Type: application/json "tenantId": "77229959-e479-4a73-b6e0-ddac27be315c" } ], + "isRegistrationRequired": false, "settings": { "isAttendeeEmailNotificationEnabled": false }, diff --git a/api-reference/beta/api/virtualeventsroot-post-townhalls.md b/api-reference/beta/api/virtualeventsroot-post-townhalls.md index 92eaec2c80b..201882d4987 100644 --- a/api-reference/beta/api/virtualeventsroot-post-townhalls.md +++ b/api-reference/beta/api/virtualeventsroot-post-townhalls.md @@ -59,6 +59,7 @@ You can specify the following properties when you create a [virtualEventTownhall | endDateTime | [dateTimeTimeZone](../resources/datetimetimezone.md) | The date and time when the town hall ends. | | invitedAttendees | [identity](../resources/identity.md) collection | The identities of the attendees invited to the town hall. The supported identities are: [communicationsGuestIdentity](../resources/communicationsguestidentity.md) and [communicationsUserIdentity](../resources/communicationsuseridentity.md). | | isInviteOnly | Boolean | Indicates whether the town hall is only open to invited people and groups within your organization. The **isInviteOnly** property can only be `true` if the value of the **audience** property is set to `organization`. | +| isRegistrationRequired |Boolean| Indicates if the attendees must complete the registration flow before they can attend. Inherited from [virtualEvent](../resources/virtualevent.md). Optional.| | settings | [virtualEventSettings](../resources/virtualeventsettings.md) | The town hall settings. | | startDateTime | [dateTimeTimeZone](../resources/datetimetimezone.md) | The date and time when the town hall starts. | @@ -71,7 +72,6 @@ If successful, this method returns a `201 Created` response code and a [virtualE ### Request The following example shows a request. -# [HTTP](#tab/http) + +> [!TIP] +> The role and permission required for delegated access using work or school accounts depend on whose request is being canceled. +> +> **End users canceling their own request:** +> - The signed-in user **doesn't need** an administrator role. +> - The least privileged permission is `EntitlementMgmt-SubjectAccess.ReadWrite`. +> +> **Administrators canceling requests submitted by others:** +> - The least privileged permission is `EntitlementManagement.ReadWrite.All`. +> - The signed-in user **must** be assigned a supported administrator role. Supported roles, from least to most privileged: +> - A [role in the Entitlement Management system](/entra/id-governance/entitlement-management-delegate): +> - *Access package assignment manager*. **This is the least privileged option** +> - *Access package manager* +> - *Catalog owner* +> - A more privileged [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json): +> - *Identity Governance Administrator* +> +> In app-only scenarios, the calling app can be assigned one of the preceding supported roles instead of the `EntitlementManagement.ReadWrite.All` application permission. The *Access package assignment manager* role is less privileged than the `EntitlementManagement.ReadWrite.All` application permission. +> +> For more information, see [Delegation and roles in entitlement management](/entra/id-governance/entitlement-management-delegate) and [how to delegate access governance to access package managers in entitlement management](/entra/id-governance/entitlement-management-delegate-managers). diff --git a/api-reference/beta/includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md b/api-reference/beta/includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md new file mode 100644 index 00000000000..27658f76459 --- /dev/null +++ b/api-reference/beta/includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md @@ -0,0 +1,30 @@ +--- +author: simranm +ms.topic: include +--- + + + +> [!TIP] +> The role and permission required for delegated access using work or school accounts depend on the `requestType` of the request being submitted. +> +> **End-user requests** — `userAdd`, `userExtend`, `userUpdate`, `userRemove`, and `approverRemove`: +> - The signed-in user **doesn't need** an administrator role. +> - The least privileged permission is `EntitlementMgmt-SubjectAccess.ReadWrite`. +> - Holding the permission isn't sufficient on its own — whether an end-user can submit a request is also governed by the corresponding accessPackageAssignmentPolicy, which controls who can be assigned to an access package and who can request it (`requestorSettings`). +> +> **Administrator requests** — `adminAdd`, `adminUpdate`, and `adminRemove`: +> - The least privileged permission is `EntitlementManagement.ReadWrite.All`. +> - The signed-in user **must** be assigned a supported administrator role. Supported roles, from least to most privileged: +> - A [role in the Entitlement Management system](/entra/id-governance/entitlement-management-delegate): +> - *Access package assignment manager*. **This is the least privileged option** +> - *Access package manager* +> - *Catalog owner* +> - A more privileged [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json): +> - *Identity Governance Administrator* +> +> In app-only scenarios, the calling app can be assigned one of the preceding supported roles instead of the `EntitlementManagement.ReadWrite.All` application permission. The *Access package assignment manager* role is less privileged than the `EntitlementManagement.ReadWrite.All` application permission. +> +> For more information, see [Delegation and roles in entitlement management](/entra/id-governance/entitlement-management-delegate) and [how to delegate access governance to access package managers in entitlement management](/entra/id-governance/entitlement-management-delegate-managers). diff --git a/api-reference/beta/includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md b/api-reference/beta/includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md new file mode 100644 index 00000000000..0bf7b4cf706 --- /dev/null +++ b/api-reference/beta/includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md @@ -0,0 +1,13 @@ +--- +author: yossibruss-ms +ms.topic: include +--- + +> [!IMPORTANT] +> For delegated access using work or school accounts, the signed-in user must be assigned a role that grants the permissions required for this operation. Custom detection rules use the Microsoft Defender XDR Unified role-based access control (RBAC) model. The following [Microsoft Entra roles](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json) are supported: +> - **Security Reader** +> - **Global Reader** +> - **Security Operator** +> - **Security Administrator** +> +> Additional workload-specific read permissions might be required to view rules that target data from specific Defender workloads (for example, Defender for Endpoint, Defender for Office 365). For more information, see [Microsoft Defender XDR Unified RBAC](/defender-xdr/manage-rbac). \ No newline at end of file diff --git a/api-reference/beta/includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md b/api-reference/beta/includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md new file mode 100644 index 00000000000..29a51cd0793 --- /dev/null +++ b/api-reference/beta/includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md @@ -0,0 +1,12 @@ +--- +author: yossibruss-ms +ms.topic: include +--- + +> [!IMPORTANT] +> For delegated access using work or school accounts, the signed-in user must be assigned a role that grants the permissions required for this operation. Custom detection rules use the Microsoft Defender XDR Unified role-based access control (RBAC) model. The following roles are supported: +> - **Detection tuning (Manage)** - A [Microsoft Defender XDR Unified RBAC](/defender-xdr/custom-permissions-details) permission that grants manage access to detections in the Microsoft Defender portal, including custom detections, alert tuning, and threat indicators of compromise. +> - **Security Administrator** - A [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json#security-administrator) that grants manage permissions across Microsoft Defender portals and services. +> - **Security Operator** - A [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json#security-operator). Sufficient for managing custom detection rules only when role-based access control is turned off in Microsoft Defender for Endpoint. If RBAC is configured, the **Manage Security Settings** permission for Defender for Endpoint is also required. +> +> Additional workload-specific permissions might be required to manage rules that target data from specific Defender workloads (for example, Defender for Endpoint, Defender for Office 365). For more information, see [Required permissions for managing custom detections](/defender-xdr/custom-detection-rules#required-permissions-for-managing-custom-detections). \ No newline at end of file diff --git a/api-reference/beta/includes/snippets/javascript/create-virtualeventtownhall-javascript-snippets.md b/api-reference/beta/includes/snippets/javascript/create-virtualeventtownhall-javascript-snippets.md index 0b78e6869a4..9ad047806a7 100644 --- a/api-reference/beta/includes/snippets/javascript/create-virtualeventtownhall-javascript-snippets.md +++ b/api-reference/beta/includes/snippets/javascript/create-virtualeventtownhall-javascript-snippets.md @@ -41,4 +41,4 @@ await client.api('/solutions/virtualEvents/townhalls') .version('beta') .post(virtualEventTownhall); -``` \ No newline at end of file +``` diff --git a/api-reference/beta/includes/snippets/javascript/create-virtualeventwebinar-javascript-snippets.md b/api-reference/beta/includes/snippets/javascript/create-virtualeventwebinar-javascript-snippets.md index b158f5572e5..7cb87776c7b 100644 --- a/api-reference/beta/includes/snippets/javascript/create-virtualeventwebinar-javascript-snippets.md +++ b/api-reference/beta/includes/snippets/javascript/create-virtualeventwebinar-javascript-snippets.md @@ -40,4 +40,4 @@ await client.api('/solutions/virtualEvents/webinars') .version('beta') .post(virtualEventWebinar); -``` \ No newline at end of file +``` diff --git a/api-reference/beta/resources/accesspackageapprovalstage.md b/api-reference/beta/resources/accesspackageapprovalstage.md index 97af211f51e..5a4ee99fffc 100644 --- a/api-reference/beta/resources/accesspackageapprovalstage.md +++ b/api-reference/beta/resources/accesspackageapprovalstage.md @@ -23,12 +23,12 @@ Used for the **stages** property of approval settings in an [access package assi |approverInformationVisibility|[approverInformationVisibility](#approverinformationvisibility-values)|Indicates whether approver information is visible to the requestor. The possible values are: `default`, `notVisible`, `visible`, `unknownFutureValue`.| |durationBeforeAutomaticDenial|Duration|The number of days that a request can be pending a response before it is automatically denied.| |durationBeforeEscalation|Duration|If escalation is required, the time a request can be pending a response from a primary approver.| -|escalationApprovers|[subjectSet](../resources/subjectset.md) collection|If escalation is enabled and the primary approvers don't respond before the escalation time, the escalationApprovers are the users who will be asked to approve requests. | +|escalationApprovers|[subjectSet](../resources/subjectset.md) collection|If escalation is enabled and the primary approvers do not respond before the escalation time, the escalationApprovers are the users who are asked to approve requests. | |fallbackEscalationApprovers|[subjectSet](../resources/subjectset.md) collection|The subjects, typically users, who are the fallback escalation approvers.| |fallbackPrimaryApprovers|[subjectSet](../resources/subjectset.md) collection|The subjects, typically users, who are the fallback primary approvers.| |isApproverJustificationRequired|Boolean|Indicates whether the approver is required to provide a justification for approving a request.| |isEscalationEnabled|Boolean|If `true`, then one or more **escalationApprovers** are configured in this approval stage.| -|primaryApprovers|[subjectSet](../resources/subjectset.md) collection|The subjects, typically users, who will be asked to approve requests. A collection of [singleUser](singleuser.md), [groupMembers](groupmembers.md), [requestorManager](requestormanager.md), [internalSponsors](internalsponsors.md), [externalSponsors](externalsponsors.md), or [targetUserSponsors](targetusersponsors.md).| +|primaryApprovers|[subjectSet](../resources/subjectset.md) collection|The subjects, typically users, who are asked to approve requests. A collection of [singleUser](singleuser.md), [groupMembers](groupmembers.md), [requestorManager](requestormanager.md), [internalSponsors](internalsponsors.md), [externalSponsors](externalsponsors.md), or [targetUserSponsors](targetusersponsors.md).| ### approverInformationVisibility values @@ -37,7 +37,7 @@ Used for the **stages** property of approval settings in an [access package assi | default | Use the default system setting for approver information visibility.| | notVisible | Approver information isn't visible to the requestor. | | visible | Approver information is visible to the requestor. | -| unknownFutureValue | Evolvable enumeration sentinel value. Don't use. | +| unknownFutureValue | Do not use. | ## Relationships None. diff --git a/api-reference/beta/resources/cloudvideointeropinfo.md b/api-reference/beta/resources/cloudvideointeropinfo.md new file mode 100644 index 00000000000..4498383e298 --- /dev/null +++ b/api-reference/beta/resources/cloudvideointeropinfo.md @@ -0,0 +1,46 @@ +--- +title: "cloudVideoInteropInfo resource type" +description: "Represents the online meeting details for conferencing device integration and Cloud Video Interop (CVI)." +author: "garchiro7" +ms.localizationpriority: medium +ms.subservice: "cloud-communications" +doc_type: resourcePageType +ms.date: 04/19/2026 +--- + +# cloudVideoInteropInfo resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents the online meeting details for conferencing device integration and [Cloud Video Interop (CVI)](/microsoftteams/cloud-video-interop). + +## Properties + +| Property | Type | Description | +|:--------------------|:----------|:----------------------------------------------| +| moreInfoWebUrl | String | Provides other video teleconferencing (VTC) dial-in options. Read-only. | +| tenantKey | String | The tenant key that is used to dial into the interactive voice response (IVR) of the partner CVI service. | +| videoTeleconferenceId | String | The video teleconferencing ID. Read-only. | + +## Relationships +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.cloudVideoInteropInfo", + "moreInfoWebUrl": "String", + "tenantKey": "String", + "videoTeleconferenceId": "String" +} +``` diff --git a/api-reference/beta/resources/crosstenantmigrationjob.md b/api-reference/beta/resources/crosstenantmigrationjob.md index fc8c4d783c0..66b8eb025f5 100644 --- a/api-reference/beta/resources/crosstenantmigrationjob.md +++ b/api-reference/beta/resources/crosstenantmigrationjob.md @@ -1,6 +1,6 @@ --- title: "crossTenantMigrationJob resource type" -description: "A Cross Tenant Migration Job" +description: "Represents a cross-tenant migration batch job that migrates user data from a source tenant to a target tenant." author: "danguilliams" ms.date: 10/30/2025 ms.localizationpriority: medium @@ -14,8 +14,7 @@ Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -A Cross Tenant Migration Job. Represents a long running job that migrates user data from a source tenant to a target tenant. - +Represents a [cross-tenant migration](../resources/crosstenantmigration.md) batch job that migrates user data from a source tenant to a target tenant. After you [create](../api/migrationsroot-post-crosstenantmigrationjobs.md) a job, call [validate](../api/crosstenantmigrationjob-validate.md) to verify tenant and resource configuration, then call [migrate](../api/crosstenantmigrationjob-migrate.md) to begin the actual migration. Inherits from [entity](../resources/entity.md). @@ -24,37 +23,38 @@ Inherits from [entity](../resources/entity.md). |Method|Return type|Description| |:---|:---|:---| |[List](../api/migrationsroot-list-crosstenantmigrationjobs.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) collection|Get a list of the crossTenantMigrationJob objects and their properties.| -|[Create](../api/migrationsroot-post-crosstenantmigrationjobs.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Create a new crossTenantMigrationJob object| -|[Get](../api/crosstenantmigrationjob-get.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Read the properties and relationships of [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) object.| -|[Update](../api/crosstenantmigrationjob-update.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Update the properties of a crossTenantMigrationJob object| +|[Create](../api/migrationsroot-post-crosstenantmigrationjobs.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Create a new [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) object.| +|[Get](../api/crosstenantmigrationjob-get.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Read the properties and relationships of a [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) object.| +|[Update](../api/crosstenantmigrationjob-update.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Update the properties of a [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) object.| |[Delete](../api/migrationsroot-delete-crosstenantmigrationjobs.md)|None|Delete a crossTenantMigrationJob object.| -|[cancel](../api/crosstenantmigrationjob-cancel.md)|[crossTenantMigrationCancelResponse](../resources/crosstenantmigrationcancelresponse.md)|Cancels a Cross tenant Migration Job.| -|[validate](../api/crosstenantmigrationjob-validate.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Validate a Cross Tenant Migration Job| -|[List users](../api/crosstenantmigrationjob-list-users.md)|[crossTenantMigrationTask](../resources/crosstenantmigrationtask.md) collection|List the users being migrated and the status of their migration| +|[cancel](../api/crosstenantmigrationjob-cancel.md)|[crossTenantMigrationCancelResponse](../resources/crosstenantmigrationcancelresponse.md)|Cancel a [cross-tenant migration job](../resources/crosstenantmigrationjob.md).| +|[migrate](../api/crosstenantmigrationjob-migrate.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Migrate a [cross-tenant migration job](../resources/crosstenantmigrationjob.md) asynchronously.| +|[validate](../api/crosstenantmigrationjob-validate.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Validate a [cross-tenant migration job](../resources/crosstenantmigrationjob.md) asynchronously.| +|[List users](../api/crosstenantmigrationjob-list-users.md)|[crossTenantMigrationTask](../resources/crosstenantmigrationtask.md) collection|List the users in the migration and the status of their migration.| ## Properties |Property|Type|Description| |:---|:---|:---| -|completeAfterDateTime|DateTimeOffset|DateTime after which the migration should be performed| -|createdBy|String|ID of the user that created the job| -|createdDateTime|DateTimeOffset|When the job what created| -|displayName|String|Display name of the job. Must be unique per tenant| -|exchangeSettings|[exchangeOnlineCrossTenantMigrationSettings](../resources/exchangeonlinecrosstenantmigrationsettings.md)|Settings to use for migration of Exchange workload| -|ID|String|ID (GUID) of the migration job| -|jobType|crossTenantMigrationJobType|Type of the migration job. The possible values are: `validate` (only validation is performed, no migration), `migrate` (Content is migrated)| -|lastUpdatedDateTime|DateTimeOffset|When this migration job was last updated| -|message|String|Status message of the migration job| -|resources|String collection|IDs (GUID) of the resources being migrated with the migration job| -|resourceType|String|Type of resource being migrated. Only `Users` is currently supported| -|sourceTenantId|String|ID (GUID) of the tenant that content is being migrated from| -|status|crossTenantMigrationJobStatus|Most recent status of the migration job. The possible values are: `submitted`, `approved`, `processing`, `cuttingOver`, `inProgress`, `completed`, `completedWithErrors`, `failed`, `cancelled`, `pendingCancel`, `adminActionRequired`, `validateSubmitted`, `validateProcessing`, `validateInProgress`, `validatePassed`, `validateFailed`, `pendingDelete`, and `deleted`| -|targetTenantId|String|ID of the tenant that content is being migrated to| -|workloads|String collection|Workloads to migrate. Supported workloads are `Teams`, `Exchange`, and `ODSP` (OneDrive/SharePoint)| +|completeAfterDateTime|DateTimeOffset|Date and time after which the migration should be performed. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| +|createdBy|String|User principal name (UPN) of the user who created the job. Read-only.| +|createdDateTime|DateTimeOffset|When the job was created. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`. Read-only.| +|displayName|String|Display name of the job. Must be unique per tenant.| +|exchangeSettings|[exchangeOnlineCrossTenantMigrationSettings](../resources/exchangeonlinecrosstenantmigrationsettings.md)|Settings to use for migration of Exchange workload. Nullable.| +|id|String|Unique identifier for the migration job. Read-only.| +|jobType|crossTenantMigrationJobType|Type of the migration job. The possible values are: `validate` (only validation is performed, no migration), `migrate` (content is migrated).| +|lastUpdatedDateTime|DateTimeOffset|When this migration job was last updated. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`. Read-only.| +|message|String|Status message of the migration job. Nullable. Read-only.| +|resources|String collection|IDs (GUID) of the resources that are migrated with the migration job.| +|resourceType|String|Type of resource being migrated. Only `Users` is currently supported.| +|sourceTenantId|String|ID (GUID) of the tenant that content is migrated from.| +|status|crossTenantMigrationJobStatus|Most recent status of the migration job. Read-only. The possible values are: `submitted`, `approved`, `processing`, `cuttingOver`, `inProgress`, `completed`, `completedWithErrors`, `failed`, `cancelled`, `pendingCancel`, `adminActionRequired`, `validateSubmitted`, `validateProcessing`, `validateInProgress`, `validatePassed`, `validateFailed`, `pendingDelete`, and `deleted`.| +|targetTenantId|String|ID of the tenant that content is migrated to. Read-only.| +|workloads|String collection|Workloads to migrate. Supported workloads are `Teams`, `Exchange`, and `ODSP` (OneDrive/SharePoint).| ## Relationships |Relationship|Type|Description| |:---|:---|:---| -|users|[crossTenantMigrationTask](../resources/crosstenantmigrationtask.md) collection|Details and status of the users being migrated in this migration job| +|users|[crossTenantMigrationTask](../resources/crosstenantmigrationtask.md) collection|Details and status of the users migrated in this migration job.| ## JSON representation The following JSON representation shows the resource type. diff --git a/api-reference/beta/resources/enums-security.md b/api-reference/beta/resources/enums-security.md index 342a8ba91ba..dde4251964b 100644 --- a/api-reference/beta/resources/enums-security.md +++ b/api-reference/beta/resources/enums-security.md @@ -375,6 +375,15 @@ Namespace: microsoft.graph.security | prevented | unknownFutureValue +### detectionRuleStatus values + +| Member | +| :----------------- | +| enabled | +| disabled | +| autoDisabled | +| unknownFutureValue | + ### eventPropagationStatus values | Member | @@ -749,6 +758,7 @@ Namespace: microsoft.graph.security |sPSharingNotifyUser| |sPSharingGenerateIncidentReport| |restrictWebGrounding| +|policyTip| ### executionMode values diff --git a/api-reference/beta/resources/enums.md b/api-reference/beta/resources/enums.md index 1da368f367f..dba291b6991 100644 --- a/api-reference/beta/resources/enums.md +++ b/api-reference/beta/resources/enums.md @@ -282,6 +282,24 @@ Namespace: microsoft.graph |failedActivation| |unknownFutureValue| +### historyEntityType values + +|Member| +|:---| +|task| +|unknownFutureValue| + +### historyEventType values + +|Member| +|:---| +|created| +|updated| +|deleted| +|undeleted| +|moved| +|unknownFutureValue| + ### provisionState values | Member | @@ -521,6 +539,7 @@ Namespace: microsoft.graph | unknownFutureValue | | formCompletion | | approvalCompletion | +| completionInHostedApp | ### plannerApprovalStatus values diff --git a/api-reference/beta/resources/notifyuseraction.md b/api-reference/beta/resources/notifyuseraction.md index a8c8fbebbd5..577f6413822 100644 --- a/api-reference/beta/resources/notifyuseraction.md +++ b/api-reference/beta/resources/notifyuseraction.md @@ -16,7 +16,7 @@ Namespace: microsoft.graph Represents a Data Loss Prevention (DLP) action that involves notifying users about a policy match. -Inherits from [dlpActionInfo](../resources/dlpactioninfo.md). +Inherits from [policyTipAction](../resources/policytipaction.md). ## Properties @@ -26,7 +26,7 @@ Inherits from [dlpActionInfo](../resources/dlpactioninfo.md). | actionLastModifiedDateTime | DateTimeOffset | Timestamp when the notification action configuration was last modified. | | emailText | String | The body text of the email notification sent to users. | | overrideOption | microsoft.graph.security.overrideOption | Specifies the override options available to the user. Possible values are `notAllowed`, `allowFalsePositiveOverride`, `allowWithJustification`, `allowWithoutJustification`, and `allowWithAcknowledgement`. | -| policyTip | String | The text of the policy tip displayed to the user within the application (For example, Outlook, Word). | +| policyTip | String | The text of the policy tip displayed to the user within the application (For example, Outlook, Word). Inherited from [policyTipAction](../resources/policytipaction.md). | | recipients | String collection | List of email addresses or user identifiers designated to receive the notification email. Can include sender, owner, manager, etc. | ## Relationships @@ -39,7 +39,7 @@ The following JSON representation shows the resource type. ``` json @@ -53,9 +53,6 @@ The following JSON representation shows the resource type. "actionLastModifiedDateTime": "String (timestamp)", "overrideOption": "String", "emailText": "String", - "policyTip": "String", - "policyTipUrl": "String", - "isPolicyTipShownAsDialog": "Boolean", - "customizedPolicyTipDialogText": "String" + "policyTip": "String" } ``` diff --git a/api-reference/beta/resources/onlinemeeting.md b/api-reference/beta/resources/onlinemeeting.md index 3f555b19234..58fd87e6d46 100644 --- a/api-reference/beta/resources/onlinemeeting.md +++ b/api-reference/beta/resources/onlinemeeting.md @@ -5,7 +5,7 @@ author: "awang119" ms.localizationpriority: medium doc_type: resourcePageType ms.subservice: "cloud-communications" -ms.date: 11/08/2024 +ms.date: 06/04/2026 --- # onlineMeeting resource type @@ -63,6 +63,7 @@ Inherits from [onlineMeetingBase](../resources/onlinemeetingbase.md). | audioConferencing | [audioConferencing](audioconferencing.md) | The phone access (dial-in) information for an online meeting. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md).| | chatInfo | [chatInfo](chatinfo.md) | The chat information associated with this online meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | chatRestrictions | [chatRestrictions](../resources/chatrestrictions.md) | Specifies the configuration settings for meeting chat restrictions. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | +| cloudVideoInteropInfo | [cloudVideoInteropInfo](cloudvideointeropinfo.md) | Conferencing device integration settings for [Cloud Video Interop (CVI)](/microsoftteams/cloud-video-interop). Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md).| | creationDateTime | DateTime | The meeting creation time in UTC. Read-only. | | endDateTime | DateTime | The meeting end time in UTC. Required when you create an online meeting. | | expiryDateTime | DateTimeOffset | Indicates the date and time when the meeting resource expires. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | @@ -77,9 +78,10 @@ Inherits from [onlineMeetingBase](../resources/onlinemeetingbase.md). | meetingOptionsWebUrl | String | Provides the URL to the Teams meeting options page for the specified meeting. This link allows *only the organizer* to configure meeting settings. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | meetingSpokenLanguageTag | String | Specifies the spoken language used during the meeting for recording and transcription purposes. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | meetingTemplateId | String | The ID of the [meeting template](/microsoftteams/create-custom-meeting-template). | +| meetingType | [onlineMeetingType](../resources/onlinemeetingbase.md#onlinemeetingtype-values) | The type of the online meeting. The possible values are: `adhoc`, `scheduled`, `recurring`, `broadcast`, `meetnow`, `unknownFutureValue`. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | participants | [meetingParticipants](meetingparticipants.md) | The participants associated with the online meeting, including the organizer and the attendees. | | recordAutomatically | Boolean | Indicates whether to record the meeting automatically. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | -|sensitivityLabelAssignment|[onlineMeetingSensitivityLabelAssignment](../resources/onlinemeetingsensitivitylabelassignment.md)|Specifies the sensitivity label applied to the Teams meeting.| +| sensitivityLabelAssignment | [onlineMeetingSensitivityLabelAssignment](../resources/onlinemeetingsensitivitylabelassignment.md) | Specifies the sensitivity label applied to the Teams meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | startDateTime | DateTime | The meeting start time in UTC. Required when you create an online meeting. | | shareMeetingChatHistoryDefault | [meetingChatHistoryDefaultMode](#meetingchathistorydefaultmode-values) | Specifies whether meeting chat history is shared with participants. The possible values are: `all`, `none`, `unknownFutureValue`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | subject | String | The subject of the online meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | @@ -185,6 +187,7 @@ The following JSON representation shows the resource type. "audioConferencing": {"@odata.type": "microsoft.graph.audioConferencing"}, "chatInfo": {"@odata.type": "microsoft.graph.chatInfo"}, "chatRestrictions":{"@odata.type": "microsoft.graph.chatRestrictions"}, + "cloudVideoInteropInfo": {"@odata.type": "microsoft.graph.cloudVideoInteropInfo"}, "creationDateTime": "String (timestamp)", "endDateTime": "String (timestamp)", "expiryDateTime": "String (timestamp)", @@ -199,6 +202,7 @@ The following JSON representation shows the resource type. "meetingOptionsWebUrl": "String", "meetingSpokenLanguageTag": "String", "meetingTemplateId": "String", + "meetingType": "String", "sensitivityLabelAssignment": { "@odata.type": "microsoft.graph.onlineMeetingSensitivityLabelAssignment" }, diff --git a/api-reference/beta/resources/onlinemeetingbase.md b/api-reference/beta/resources/onlinemeetingbase.md index 43855fd4158..37363b4ecbc 100644 --- a/api-reference/beta/resources/onlinemeetingbase.md +++ b/api-reference/beta/resources/onlinemeetingbase.md @@ -5,7 +5,7 @@ author: "awang119" ms.localizationpriority: medium doc_type: resourcePageType ms.subservice: "cloud-communications" -ms.date: 11/05/2024 +ms.date: 06/04/2026 --- # onlineMeetingBase resource type @@ -43,6 +43,7 @@ Inherits from [entity](../resources/entity.md). | audioConferencing | [audioConferencing](audioconferencing.md) | The phone access (dial-in) information for an online meeting. Read-only. | | chatInfo | [chatInfo](chatinfo.md) | The chat information associated with this online meeting. | | chatRestrictions | [chatRestrictions](../resources/chatrestrictions.md) | Specifies the configuration settings for meeting chat restrictions. | +| cloudVideoInteropInfo | [cloudVideoInteropInfo](cloudvideointeropinfo.md) | Conferencing device integration settings for [Cloud Video Interop (CVI)](/microsoftteams/cloud-video-interop). Read-only. | | expiryDateTime | DateTimeOffset | Indicates the date and time when the meeting resource expires. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. | | id | String | The default ID associated with the online meeting. Read-only. | | isEndToEndEncryptionEnabled | Boolean | Indicates whether end-to-end encryption (E2EE) is enabled for the online meeting. | @@ -53,6 +54,7 @@ Inherits from [entity](../resources/entity.md). | lobbyBypassSettings | [lobbyBypassSettings](lobbybypasssettings.md) | Specifies which participants can bypass the meeting lobby. | | meetingOptionsWebUrl | String | Provides the URL to the Teams meeting options page for the specified meeting. This link allows *only the organizer* to configure meeting settings. | | meetingSpokenLanguageTag | String | Specifies the spoken language used during the meeting for recording and transcription purposes. | +| meetingType | [onlineMeetingType](#onlinemeetingtype-values) | The type of the online meeting. The possible values are: `adhoc`, `scheduled`, `recurring`, `broadcast`, `meetnow`, `unknownFutureValue`. Read-only. | | recordAutomatically | Boolean | Indicates whether to record the meeting automatically. | | sensitivityLabelAssignment|[onlineMeetingSensitivityLabelAssignment](../resources/onlinemeetingsensitivitylabelassignment.md)|Specifies the sensitivity label applied to the Teams meeting.| | shareMeetingChatHistoryDefault | [meetingChatHistoryDefaultMode](#meetingchathistorydefaultmode-values) |Specifies whether meeting chat history is shared with participants. The possible values are: `all`, `none`, `unknownFutureValue`.| @@ -103,6 +105,17 @@ Inherits from [entity](../resources/entity.md). | organizer | Only the organizer is a presenter. | | unknownFutureValue | Evolvable enumeration sentinel value. Don't use. | +### onlineMeetingType values + +| Value | Description | +| ------------------ | ------------------------------------------------- | +| adhoc | The meeting is an ad hoc meeting. | +| scheduled | The meeting is a scheduled meeting. | +| recurring | The meeting is a recurring meeting. | +| broadcast | The meeting is a broadcast meeting. | +| meetnow | The meeting is a *Meet now* session. | +| unknownFutureValue | Evolvable enumeration sentinel value. Don't use. | + ## Relationships | Relationship | Type | Description | @@ -141,6 +154,7 @@ The following JSON representation shows the resource type. "audioConferencing": {"@odata.type": "microsoft.graph.audioConferencing"}, "chatInfo": {"@odata.type": "microsoft.graph.chatInfo"}, "chatRestrictions":{"@odata.type": "microsoft.graph.chatRestrictions"}, + "cloudVideoInteropInfo": {"@odata.type": "microsoft.graph.cloudVideoInteropInfo"}, "expiryDateTime": "String (timestamp)", "id": "String (identifier)", "isEndToEndEncryptionEnabled": "Boolean", @@ -151,6 +165,7 @@ The following JSON representation shows the resource type. "lobbyBypassSettings": {"@odata.type": "microsoft.graph.lobbyBypassSettings"}, "meetingOptionsWebUrl": "String", "meetingSpokenLanguageTag": "String", + "meetingType": "String", "recordAutomatically": "Boolean", "sensitivityLabelAssignment": { "@odata.type": "microsoft.graph.onlineMeetingSensitivityLabelAssignment" diff --git a/api-reference/beta/resources/planner-overview.md b/api-reference/beta/resources/planner-overview.md index 918d91919df..ab9ba52f0bd 100644 --- a/api-reference/beta/resources/planner-overview.md +++ b/api-reference/beta/resources/planner-overview.md @@ -179,6 +179,11 @@ The delta payload objects that the Planner delta query can currently return are Use the corresponding `GET` methods on the resource to obtain the initial state of objects to be populated into the local cache. + +### Looking at history for the plan + +Planner supports an [API](../api/plannerplan-list-historyitems.md) to get the [history](plannerhistoryitem.md) of changes made to [tasks](plannertask.md) within a [plan](plannerplan.md). + ### Differentiating between object creation and object modification In certain scenarios, the caller might want to distinguish between object creation and object modification within Planner's delta query feed. diff --git a/api-reference/beta/resources/plannerdelta.md b/api-reference/beta/resources/plannerdelta.md new file mode 100644 index 00000000000..406024733f5 --- /dev/null +++ b/api-reference/beta/resources/plannerdelta.md @@ -0,0 +1,46 @@ +--- +title: "plannerDelta resource type" +description: "An abstract type that represents the base type for planner entities such as a plan or a task." +author: "praspati" +ms.date: 05/15/2026 +ms.localizationpriority: medium +ms.subservice: "planner" +doc_type: resourcePageType +--- + +# plannerDelta resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +An abstract type that represents the base type for planner entities such as a plan or a task. + +Base type of [plannerHistoryItem](plannerhistoryitem.md), [plannerTask](plannertask.md), [plannerPlan](plannerplan.md), and [plannerBucket](plannerbucket.md). + +## Methods +None. + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|id|String|The unique identifier for the entity. | + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.plannerDelta", + "id": "String (identifier)" +} +``` diff --git a/api-reference/beta/resources/plannerhistoryitem.md b/api-reference/beta/resources/plannerhistoryitem.md new file mode 100644 index 00000000000..a59ed101d4e --- /dev/null +++ b/api-reference/beta/resources/plannerhistoryitem.md @@ -0,0 +1,63 @@ +--- +title: "plannerHistoryItem resource type" +description: "An abstract type that represents a record of a change made to an entity within a planner plan." +author: "praspati" +ms.date: 05/15/2026 +ms.localizationpriority: medium +ms.subservice: "planner" +doc_type: resourcePageType +--- + +# plannerHistoryItem resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +An abstract type that represents a record of a change made to an entity within a [planner plan](../resources/plannerplan.md). This resource serves as the base for specific history item types. + +Inherits from [plannerDelta](../resources/plannerdelta.md). + +## Methods +|Method|Return type|Description| +|:---|:---|:---| +|[List](../api/plannerplan-list-historyitems.md)|[plannerHistoryItem](../resources/plannerhistoryitem.md) collection|Get the [history](../resources/plannerhistoryitem.md) of changes made to tasks within a [plan](../resources/plannerplan.md).| + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|actor|[identitySet](../resources/identityset.md)|The identity of the user or application that performed the change.| +|entityId|String|The ID of the entity that was changed.| +|entityType|historyEntityType|The type of entity that was changed. The possible values are: `task`, `unknownFutureValue`.| +|eventType|historyEventType|The type of change event that occurred. The possible values are: `created`, `updated`, `deleted`, `undeleted`, `moved`, `unknownFutureValue`.| +|id|String|The unique identifier for the history item. Inherited from [plannerDelta](../resources/plannerdelta.md).| +|occurredDateTime|DateTimeOffset|The date and time when the change occurred. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| +|planId|String|The ID of the plan that contains the changed entity.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.plannerHistoryItem", + "id": "String (identifier)", + "planId": "String", + "entityId": "String", + "entityType": "String", + "eventType": "String", + "occurredDateTime": "String (timestamp)", + "actor": { + "@odata.type": "microsoft.graph.identitySet" + } +} +``` diff --git a/api-reference/beta/resources/plannerplan.md b/api-reference/beta/resources/plannerplan.md index 39bb0f3532f..f13c3a1ab94 100644 --- a/api-reference/beta/resources/plannerplan.md +++ b/api-reference/beta/resources/plannerplan.md @@ -31,6 +31,7 @@ Represents a plan in Microsoft 365. Either a [group](group.md) or a [user](user. |[List plan tasks](../api/plannerplan-list-tasks.md) |[plannerTask](plannertask.md) collection| Get a **plannerTask** object collection.| |[Get delta](../api/plannerplan-delta.md) | [plannerPlan](../resources/plannerplan.md) collection | Get newly created, updated, or deleted **plannerPlan** objects in either a **group** or a [plannerRoster](plannerroster.md) type container without having to perform a full read of the entire resource collection. | |[Get usage rights](../api/plannerplan-getusagerights.md)|[planUsageRight](../resources/planusageright.md)|Get the usage rights for a specific [plan](../resources/plannerplan.md) based on its sensitivity label assignment and the requesting user's permissions.| +|[List history items](../api/plannerplan-list-historyitems.md)|[plannerHistoryItem](plannerhistoryitem.md) collection|Get the [history](../resources/plannerhistoryitem.md) of changes made to tasks within a [plan](../resources/plannerplan.md).| ## Properties | Property | Type |Description| @@ -53,6 +54,7 @@ Represents a plan in Microsoft 365. Either a [group](group.md) or a [user](user. |:---------------|:--------|:----------| |buckets|[plannerBucket](plannerbucket.md) collection| Collection of buckets in the plan. Read-only. Nullable.| |details|[plannerPlanDetails](plannerplandetails.md)| Extra details about the plan. Read-only. Nullable. | +|historyItems|[plannerHistoryItem](plannerhistoryitem.md) collection| Collection of history items for entities in the plan. Read-only. Nullable. | |tasks|[plannerTask](plannertask.md) collection| Collection of tasks in the plan. Read-only. Nullable. | ## JSON representation diff --git a/api-reference/beta/resources/plannertaskdata.md b/api-reference/beta/resources/plannertaskdata.md new file mode 100644 index 00000000000..dce32908a3e --- /dev/null +++ b/api-reference/beta/resources/plannertaskdata.md @@ -0,0 +1,105 @@ +--- +title: "plannerTaskData resource type" +description: "Represents a snapshot of a planner task at a specific point in time." +author: "praspati" +ms.date: 05/15/2026 +ms.localizationpriority: medium +ms.subservice: "planner" +doc_type: resourcePageType +--- + +# plannerTaskData resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a snapshot of a [planner task](../resources/plannertask.md) at a specific point in time. This resource is used in [taskHistoryItem](../resources/taskhistoryitem.md) to capture the state of a task before and after changes. + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|activeChecklistItemCount|Int32|The number of incomplete checklist items whose value is set to `false`.| +|appliedCategories|[plannerAppliedCategories](../resources/plannerappliedcategories.md)|The categories to which the task is applied.| +|archivalInfo|[plannerArchivalInfo](../resources/plannerarchivalinfo.md)|Information about who archived or unarchived the task and why.| +|assignments|[plannerAssignments](../resources/plannerassignments.md)|The set of assignees the task is assigned to.| +|bucketId|String|Bucket ID to which the task belongs. The bucket needs to be in the same plan as the task.| +|checklistItemCount|Int32|The number of checklist items that are present on the task.| +|completedBy|[identitySet](../resources/identityset.md)|The identity of the user that completed the task.| +|completedDateTime|DateTimeOffset|The date and time at which the **percentComplete** of the task is set to `100`. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| +|conversationThreadId|String|The thread ID of the conversation on the task that corresponds to the ID of the conversation thread object created in the group.| +|createdBy|[identitySet](../resources/identityset.md)|The identity of the user who created the task.| +|createdDateTime|DateTimeOffset|The date and time at which the task was created. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| +|creationSource|[plannerTaskCreation](../resources/plannertaskcreation.md)|Information about the origin of the task.| +|details|[plannerTaskDetailsData](../resources/plannertaskdetailsdata.md)|Additional details about the task.| +|dueDateTime|DateTimeOffset|The date and time at which the task is due. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| +|hasChat|Boolean|Set to `true` if the task has a chat associated with it; otherwise, `false`.| +|hasDescription|Boolean|Set to `true` if the details object of the task has a nonempty description; otherwise, `false`.| +|isArchived|Boolean|Set to `true` if the task is archived; otherwise, `false`.| +|orderHint|String|Hint used to order items of this type in a list view.| +|percentComplete|Int32|Percentage of task completion. When set to `100`, the task is considered completed.| +|previewType|plannerPreviewType|The type of preview that shows up on the task. The possible values are: `automatic`, `noPreview`, `checklist`, `description`, `reference`.| +|priority|Int32|The priority of the task. Valid values are between `0` and `10`, inclusive. Larger values indicate lower priority. For example, `0` has the highest priority and `10` has the lowest priority.| +|recurrence|[plannerTaskRecurrence](../resources/plannertaskrecurrence.md)|Defines active or inactive recurrence for the task. A `null` value indicates that the recurrence was never defined for the task.| +|referenceCount|Int32|Number of external references that exist on the task.| +|specifiedCompletionRequirements|plannerTaskCompletionRequirements|Indicates all the requirements specified on the task. The possible values are: `none`, `checklistCompletion`, `unknownFutureValue`, `formCompletion`, `approvalCompletion`, `completionInHostedApp`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `formCompletion` , `approvalCompletion` , `completionInHostedApp`.| +|startDateTime|DateTimeOffset|The date and time at which the task starts. The date and time information uses ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2021 is `2021-01-01T00:00:00Z`.| +|title|String|Title of the task.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.plannerTaskData", + "createdBy": { + "@odata.type": "microsoft.graph.identitySet" + }, + "bucketId": "String", + "isArchived": "Boolean", + "title": "String", + "orderHint": "String", + "percentComplete": "Int32", + "specifiedCompletionRequirements": "String", + "priority": "Int32", + "startDateTime": "String (timestamp)", + "createdDateTime": "String (timestamp)", + "dueDateTime": "String (timestamp)", + "hasDescription": "Boolean", + "hasChat": "Boolean", + "previewType": "String", + "completedDateTime": "String (timestamp)", + "completedBy": { + "@odata.type": "microsoft.graph.identitySet" + }, + "referenceCount": "Int32", + "checklistItemCount": "Int32", + "activeChecklistItemCount": "Int32", + "appliedCategories": { + "@odata.type": "microsoft.graph.plannerAppliedCategories" + }, + "assignments": { + "@odata.type": "microsoft.graph.plannerAssignments" + }, + "conversationThreadId": "String", + "creationSource": { + "@odata.type": "microsoft.graph.plannerTaskCreation" + }, + "recurrence": { + "@odata.type": "microsoft.graph.plannerTaskRecurrence" + }, + "archivalInfo": { + "@odata.type": "microsoft.graph.plannerArchivalInfo" + }, + "details": { + "@odata.type": "microsoft.graph.plannerTaskDetailsData" + } +} +``` diff --git a/api-reference/beta/resources/plannertaskdetailsdata.md b/api-reference/beta/resources/plannertaskdetailsdata.md new file mode 100644 index 00000000000..e82a3f44a66 --- /dev/null +++ b/api-reference/beta/resources/plannertaskdetailsdata.md @@ -0,0 +1,65 @@ +--- +title: "plannerTaskDetailsData resource type" +description: "Represents a snapshot of additional details about a planner task at a specific point in time." +author: "praspati" +ms.date: 05/15/2026 +ms.localizationpriority: medium +ms.subservice: "planner" +doc_type: resourcePageType +--- + +# plannerTaskDetailsData resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a snapshot of additional [details](../resources/plannertaskdetails.md) about a [planner task](../resources/plannertask.md) at a specific point in time. This resource is used in [plannerTaskData](../resources/plannertaskdata.md) to capture extended task information before and after changes. + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|approvalAttachment|[plannerBaseApprovalAttachment](../resources/plannerbaseapprovalattachment.md)|Detailed information about the approval that is attached to the task.| +|checklist|[plannerChecklistItems](../resources/plannerchecklistitems.md)|The collection of checklist items on the task.| +|completionRequirements|[plannerTaskCompletionRequirementDetails](../resources/plannertaskcompletionrequirementdetails.md)|Contains detailed information about requirements on the task.| +|description|String|Description of the task.| +|forms|[plannerFormsDictionary](../resources/plannerformsdictionary.md)|The collection of forms associated with the task.| +|notes|[itemBody](../resources/itembody.md)|Rich text description of the task for use by applications that support HTML content.| +|previewType|plannerPreviewType|The type of preview that shows up on the task. The possible values are: `automatic`, `noPreview`, `checklist`, `description`, `reference`.| +|references|[plannerExternalReferences](../resources/plannerexternalreferences.md)|The collection of references on the task.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.plannerTaskDetailsData", + "description": "String", + "notes": { + "@odata.type": "microsoft.graph.itemBody" + }, + "previewType": "String", + "references": { + "@odata.type": "microsoft.graph.plannerExternalReferences" + }, + "checklist": { + "@odata.type": "microsoft.graph.plannerChecklistItems" + }, + "forms": { + "@odata.type": "microsoft.graph.plannerFormsDictionary" + }, + "completionRequirements": { + "@odata.type": "microsoft.graph.plannerTaskCompletionRequirementDetails" + }, + "approvalAttachment": { + "@odata.type": "microsoft.graph.plannerBaseApprovalAttachment" + } +} +``` diff --git a/api-reference/beta/resources/policytipaction.md b/api-reference/beta/resources/policytipaction.md new file mode 100644 index 00000000000..0a900866bf6 --- /dev/null +++ b/api-reference/beta/resources/policytipaction.md @@ -0,0 +1,47 @@ +--- +title: "policyTipAction resource type" +description: "When a Data Loss Prevention (DLP) policy is triggered, guidance to display to the user is included as a policy tip." +author: "Vishnu369" +ms.date: 05/26/2026 +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +--- + +# policyTipAction resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +When a Data Loss Prevention (DLP) policy is triggered, guidance to display to the user is included as a policy tip. The **policyTipAction** is returned in the processContent and protectionScopes responses when a DLP policy with a notify-user action matches. + +Inherits from [dlpActionInfo](../resources/dlpactioninfo.md). + +## Properties + +| Property | Type | Description | +| :--- | :--- | :--- | +| action | microsoft.graph.security.dlpAction | The type of DLP action. Inherited from [dlpActionInfo](../resources/dlpactioninfo.md). | +| policyTip | String | The text of the policy tip that explains what triggered the DLP policy. Developers can display this information to users in the app. | + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.policyTipAction", + "action": "policyTip", + "policyTip": "String" +} +``` diff --git a/api-reference/beta/resources/security-accountentitymapping.md b/api-reference/beta/resources/security-accountentitymapping.md new file mode 100644 index 00000000000..0e9a7126b3f --- /dev/null +++ b/api-reference/beta/resources/security-accountentitymapping.md @@ -0,0 +1,58 @@ +--- +title: "accountEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to an account entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# accountEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to an account entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|aadUserIdColumn|String|Name of the detection query column that maps to the Microsoft Entra user ID of the alert entity.| +|dnsDomainColumn|String|Name of the detection query column that maps to the DNS domain of the alert entity.| +|nameColumn|String|Name of the detection query column that maps to the name of the alert entity.| +|ntDomainColumn|String|Name of the detection query column that maps to the NT domain of the alert entity.| +|sidColumn|String|Name of the detection query column that maps to the security identifier (SID) of the alert entity.| +|upnColumn|String|Name of the detection query column that maps to the user principal name (UPN) of the alert entity.| +|upnSuffixColumn|String|Name of the detection query column that maps to the UPN suffix of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.accountEntityMapping", + "aadUserIdColumn": "String", + "dnsDomainColumn": "String", + "nameColumn": "String", + "ntDomainColumn": "String", + "sidColumn": "String", + "upnColumn": "String", + "upnSuffixColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-accountobjectidaction.md b/api-reference/beta/resources/security-accountobjectidaction.md new file mode 100644 index 00000000000..fcdc47847ef --- /dev/null +++ b/api-reference/beta/resources/security-accountobjectidaction.md @@ -0,0 +1,46 @@ +--- +title: "accountObjectIdAction resource type" +description: "Represents an automated action that targets an account by Microsoft Entra object ID from a custom detection rule query." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# accountObjectIdAction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an [automatedAction](../resources/security-automatedaction.md) that targets an account by Microsoft Entra object ID from a [detectionRule](../resources/security-detectionrule.md) hunting query. The action uses the configured account object ID column from the query output to identify the account. + +Inherits from [automatedAction](../resources/security-automatedaction.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|accountObjectIdColumn|String|Name of the hunting-query result column that contains the Microsoft Entra object ID of the targeted account.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.accountObjectIdAction", + "accountObjectIdColumn": "String" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-accountsidaction.md b/api-reference/beta/resources/security-accountsidaction.md new file mode 100644 index 00000000000..6d719478286 --- /dev/null +++ b/api-reference/beta/resources/security-accountsidaction.md @@ -0,0 +1,46 @@ +--- +title: "accountSidAction resource type" +description: "Represents an automated action that targets an account by security identifier from a custom detection rule query." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# accountSidAction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an [automatedAction](../resources/security-automatedaction.md) that targets an account by security identifier (SID) from a [detectionRule](../resources/security-detectionrule.md) hunting query. The action uses the configured account SID column from the query output to identify the account. + +Inherits from [automatedAction](../resources/security-automatedaction.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|accountSidColumn|String|Name of the hunting-query result column that contains the SID of the targeted account.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.accountSidAction", + "accountSidColumn": "String" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-alertcustomdetails.md b/api-reference/beta/resources/security-alertcustomdetails.md new file mode 100644 index 00000000000..a6814dfd542 --- /dev/null +++ b/api-reference/beta/resources/security-alertcustomdetails.md @@ -0,0 +1,43 @@ +--- +title: "alertCustomDetails resource type" +description: "Contains custom key-value detail pairs to include in an alert generated by a custom detection rule." +author: "mmekler" +ms.date: 05/25/2026 +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +--- + +# alertCustomDetails resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Contains custom key-value detail pairs to include in an alert generated by a custom detection rule. This object is configured in the **customDetails** property of an [alertTemplate](../resources/security-alerttemplate.md). + +This resource is an open type that allows more values to be returned than defined. + +## Properties + +None. + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.alertCustomDetails" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-alerttemplate.md b/api-reference/beta/resources/security-alerttemplate.md index c99415f25d8..fdd6936ad80 100644 --- a/api-reference/beta/resources/security-alerttemplate.md +++ b/api-reference/beta/resources/security-alerttemplate.md @@ -5,7 +5,7 @@ author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 06/17/2026 --- # alertTemplate resource type @@ -14,25 +14,29 @@ Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Describes the alert that is generated in response to a detection by a [custom detection rule](../resources/security-detectionrule.md). +Describes the alert that is generated in response to a detection by a [custom detection rule](../resources/security-detectionrule.md), including the alert metadata, recommended actions, custom details, MITRE tactics, and entity mappings. ## Properties -| Property | Type | Description | -|--------------------|---------------------------------------------------------------------------------------------|---------------------------------------------------------------------------------------------------------| -| title | String | Name of the alert triggered by the custom detection rule. | -| description | String | Description of the alert triggered by the custom detection rule. | -| severity | [microsoft.graph.alertSeverity](../resources/enums.md#alertseverity-values) | Severity assigned to the alert triggered by the custom detection rule. | -| category | String | Category assigned to the alert triggered by the custom detection rule. | -| mitreTechniques | String collection | MITRE technique assigned to the alert triggered by the custom detection rule. | -| recommendedActions | String | Recommended actions to mitigate the threat related to the alert triggered by the custom detection rule. | -| impactedAssets | [microsoft.graph.security.impactedAsset](../resources/security-impactedasset.md) collection | Which asset or assets were impacted based on the alert triggered by the custom detection rule. | - +|Property|Type|Description| +|:---|:---|:---| +|customDetails|[microsoft.graph.security.alertCustomDetails](../resources/security-alertcustomdetails.md)|Custom key-value detail pairs to include in the alert. Each value identifies the detection query column that supplies the corresponding custom detail.| +|description|String|Description of the alert triggered by the custom detection rule.| +|entityMappings|[microsoft.graph.security.entityMappingConfiguration](../resources/security-entitymappingconfiguration.md)|Defines how detection query columns map to the entities that are attached to the resulting alert.| +|recommendedActions|String|Recommended actions to mitigate the threat related to the alert triggered by the custom detection rule.| +|severity|[microsoft.graph.security.alertSeverity](../resources/security-alert.md#alertseverity-values)|Severity assigned to the alert triggered by the custom detection rule. The possible values are: `informational`, `low`, `medium`, `high`.| +|tactics|[microsoft.graph.security.mitreTactic](../resources/security-mitretactic.md) collection|The MITRE ATT&CK tactics framing for this alert.| +|title|String|Name of the alert triggered by the custom detection rule.| +|category (deprecated)|String|Indicates the category assigned to the alert triggered by the custom detection rule. **Deprecated.** Use **tactics** instead. This property will be removed from this resource on 2026-10-01.| +|impactedAssets (deprecated)|[microsoft.graph.security.impactedAsset](../resources/security-impactedasset.md) collection|Indicates the impacted assets for the alert triggered by the custom detection rule. **Deprecated.** Use **entityMappings** instead. This property will be removed from this resource on 2026-10-01.| +|mitreTechniques (deprecated)|String collection|Indicates the MITRE techniques assigned to the alert triggered by the custom detection rule. **Deprecated.** Use **tactics** instead. This property will be removed from this resource on 2026-10-01.| ## Relationships + None. ## JSON representation + The following JSON representation shows the resource type. +``` json +{ + "@odata.type": "#microsoft.graph.security.amazonResourceEntityMapping", + "amazonResourceIdColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-api-overview.md b/api-reference/beta/resources/security-api-overview.md index 960d9d0d411..c258f5a0351 100644 --- a/api-reference/beta/resources/security-api-overview.md +++ b/api-reference/beta/resources/security-api-overview.md @@ -92,11 +92,11 @@ You can create advanced hunting [Custom detection rules](/microsoft-365/security ### Quotas -1. [Get multiple rules](../api/security-detectionrule-list.md): 10 rules per minute per application, 300 rules per hour per application, 600 rules per hour per tenant +1. [Get multiple rules](../api/security-rulesroot-list-detectionrules.md): 10 rules per minute per application, 300 rules per hour per application, 600 rules per hour per tenant 2. [Get a single rule](../api/security-detectionrule-get.md): 100 rules per minute per application, 1,500 rules per hour per application, 1,800 rules per hour per tenant -3. [Create rule](../api/security-detectionrule-post-detectionRules.md): 10 rules per minute per application, 1,500 rules per hour per application, 1,800 rules per hour per tenant +3. [Create rule](../api/security-rulesroot-post-detectionrules.md): 10 rules per minute per application, 1,500 rules per hour per application, 1,800 rules per hour per tenant 4. [Update rule](../api/security-detectionrule-update.md): 100 rules per minute per application, 1,500 rules per hour per application, 1,800 rules per hour per tenant -5. [Delete rule](../api/security-detectionrule-delete.md): 100 rules per minute per application, 1,500 rules per hour per application, 1,800 rules per hour per tenant +5. [Delete rule](../api/security-rulesroot-delete-detectionrules.md): 100 rules per minute per application, 1,500 rules per hour per application, 1,800 rules per hour per tenant ## Alerts Alerts are detailed warnings about suspicious activities in a customer's tenant that Microsoft or partner security providers have identified and flagged for action. Attacks typically employ various techniques against different types of entities, such as devices, users, and mailboxes. The result is alerts from multiple security providers for multiple entities in the tenant. Piecing the individual alerts together to gain insight into an attack can be challenging and time-consuming. diff --git a/api-reference/beta/resources/security-automatedaction.md b/api-reference/beta/resources/security-automatedaction.md new file mode 100644 index 00000000000..a10b8ac9f05 --- /dev/null +++ b/api-reference/beta/resources/security-automatedaction.md @@ -0,0 +1,49 @@ +--- +title: "automatedAction resource type" +description: "Represents an automated response action configured on a custom detection rule." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# automatedAction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an automated response action configured in the **automatedActions** property of a [detectionAction](../resources/security-detectionaction.md) for a [detectionRule](../resources/security-detectionrule.md). This type is abstract and cannot be instantiated directly. Use one of the following derived types, differentiated by `@odata.type`: + +- [accountObjectIdAction](../resources/security-accountobjectidaction.md) +- [accountSidAction](../resources/security-accountsidaction.md) +- [deviceAction](../resources/security-deviceaction.md) +- [emailAction](../resources/security-emailaction.md) +- [fileAction](../resources/security-fileaction.md) +- [isolateDeviceAction](../resources/security-isolatedeviceaction.md) +- [stopAndQuarantineFileAction](../resources/security-stopandquarantinefileaction.md) + +## Properties + +None. + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.automatedAction" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-automatedactionset.md b/api-reference/beta/resources/security-automatedactionset.md new file mode 100644 index 00000000000..0f639f0dcca --- /dev/null +++ b/api-reference/beta/resources/security-automatedactionset.md @@ -0,0 +1,138 @@ +--- +title: "automatedActionSet resource type" +description: "Contains the automated response actions grouped by target entity type for a custom detection rule." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# automatedActionSet resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Contains the automated response actions grouped by target entity type in the **automatedActions** property of a [detectionAction](../resources/security-detectionaction.md) for a [detectionRule](../resources/security-detectionrule.md). Each collection identifies the hunting-query output columns used to locate the impacted devices, files, accounts, or email messages for the action. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|allowFiles|[microsoft.graph.security.fileAction](../resources/security-fileaction.md) collection|File actions that allow files identified by file hash columns in the hunting-query results.| +|blockFiles|[microsoft.graph.security.fileAction](../resources/security-fileaction.md) collection|File actions that block files identified by file hash columns in the hunting-query results.| +|collectInvestigationPackages|[microsoft.graph.security.deviceAction](../resources/security-deviceaction.md) collection|Device actions that collect investigation packages from devices identified in the hunting-query results.| +|disableUsers|[microsoft.graph.security.accountSidAction](../resources/security-accountsidaction.md) collection|Account actions that disable users identified by account SID columns in the hunting-query results.| +|forceUserPasswordResets|[microsoft.graph.security.accountSidAction](../resources/security-accountsidaction.md) collection|Account actions that force password resets for users identified by account SID columns in the hunting-query results.| +|hardDeleteEmails|[microsoft.graph.security.emailAction](../resources/security-emailaction.md) collection|Email actions that permanently delete messages identified in the hunting-query results.| +|initiateInvestigations|[microsoft.graph.security.deviceAction](../resources/security-deviceaction.md) collection|Device actions that initiate investigations on devices identified in the hunting-query results.| +|isolateDevices|[microsoft.graph.security.isolateDeviceAction](../resources/security-isolatedeviceaction.md) collection|Device actions that isolate devices identified in the hunting-query results.| +|markUsersAsCompromised|[microsoft.graph.security.accountObjectIdAction](../resources/security-accountobjectidaction.md) collection|Account actions that mark users as compromised when they're identified by Microsoft Entra object ID columns in the hunting-query results.| +|moveEmailsToDeletedItems|[microsoft.graph.security.emailAction](../resources/security-emailaction.md) collection|Email actions that move messages identified in the hunting-query results to Deleted Items.| +|moveEmailsToInbox|[microsoft.graph.security.emailAction](../resources/security-emailaction.md) collection|Email actions that move messages identified in the hunting-query results to the Inbox.| +|moveEmailsToJunk|[microsoft.graph.security.emailAction](../resources/security-emailaction.md) collection|Email actions that move messages identified in the hunting-query results to Junk Email.| +|restrictAppExecutions|[microsoft.graph.security.deviceAction](../resources/security-deviceaction.md) collection|Device actions that restrict app execution on devices identified in the hunting-query results.| +|runAntivirusScans|[microsoft.graph.security.deviceAction](../resources/security-deviceaction.md) collection|Device actions that run antivirus scans on devices identified in the hunting-query results.| +|softDeleteEmails|[microsoft.graph.security.emailAction](../resources/security-emailaction.md) collection|Email actions that soft-delete messages identified in the hunting-query results.| +|stopAndQuarantineFiles|[microsoft.graph.security.stopAndQuarantineFileAction](../resources/security-stopandquarantinefileaction.md) collection|File actions that stop running files and quarantine them on devices identified in the hunting-query results.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.automatedActionSet", + "allowFiles": [ + { + "@odata.type": "microsoft.graph.security.fileAction" + } + ], + "blockFiles": [ + { + "@odata.type": "microsoft.graph.security.fileAction" + } + ], + "collectInvestigationPackages": [ + { + "@odata.type": "microsoft.graph.security.deviceAction" + } + ], + "disableUsers": [ + { + "@odata.type": "microsoft.graph.security.accountSidAction" + } + ], + "forceUserPasswordResets": [ + { + "@odata.type": "microsoft.graph.security.accountSidAction" + } + ], + "hardDeleteEmails": [ + { + "@odata.type": "microsoft.graph.security.emailAction" + } + ], + "initiateInvestigations": [ + { + "@odata.type": "microsoft.graph.security.deviceAction" + } + ], + "isolateDevices": [ + { + "@odata.type": "microsoft.graph.security.isolateDeviceAction" + } + ], + "markUsersAsCompromised": [ + { + "@odata.type": "microsoft.graph.security.accountObjectIdAction" + } + ], + "moveEmailsToDeletedItems": [ + { + "@odata.type": "microsoft.graph.security.emailAction" + } + ], + "moveEmailsToInbox": [ + { + "@odata.type": "microsoft.graph.security.emailAction" + } + ], + "moveEmailsToJunk": [ + { + "@odata.type": "microsoft.graph.security.emailAction" + } + ], + "restrictAppExecutions": [ + { + "@odata.type": "microsoft.graph.security.deviceAction" + } + ], + "runAntivirusScans": [ + { + "@odata.type": "microsoft.graph.security.deviceAction" + } + ], + "softDeleteEmails": [ + { + "@odata.type": "microsoft.graph.security.emailAction" + } + ], + "stopAndQuarantineFiles": [ + { + "@odata.type": "microsoft.graph.security.stopAndQuarantineFileAction" + } + ] +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-azureresourceentitymapping.md b/api-reference/beta/resources/security-azureresourceentitymapping.md new file mode 100644 index 00000000000..ac4e0e1aa20 --- /dev/null +++ b/api-reference/beta/resources/security-azureresourceentitymapping.md @@ -0,0 +1,46 @@ +--- +title: "azureResourceEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to an Azure resource entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# azureResourceEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to an Azure resource entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|resourceIdColumn|String|Name of the detection query column that maps to the resource ID of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.azureResourceEntityMapping", + "resourceIdColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-blockfileresponseaction.md b/api-reference/beta/resources/security-blockfileresponseaction.md index eb232000d07..6127427491b 100644 --- a/api-reference/beta/resources/security-blockfileresponseaction.md +++ b/api-reference/beta/resources/security-blockfileresponseaction.md @@ -1,5 +1,5 @@ --- -title: "blockFileResponseAction resource type" +title: "blockFileResponseAction resource type (deprecated)" description: "Describes a response action that blocks a file from running on devices controlled by Microsoft Defender for Endpoint." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# blockFileResponseAction resource type +# blockFileResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **blockFileResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that blocks a file from running on devices controlled by Microsoft Defender for Endpoint. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-cloudapplicationentitymapping.md b/api-reference/beta/resources/security-cloudapplicationentitymapping.md new file mode 100644 index 00000000000..30c4513b70c --- /dev/null +++ b/api-reference/beta/resources/security-cloudapplicationentitymapping.md @@ -0,0 +1,48 @@ +--- +title: "cloudApplicationEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a cloud application entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# cloudApplicationEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a cloud application entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|appIdColumn|String|Name of the detection query column that maps to the application ID of the alert entity.| +|nameColumn|String|Name of the detection query column that maps to the name of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.cloudApplicationEntityMapping", + "appIdColumn": "String", + "nameColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-collectinvestigationpackageresponseaction.md b/api-reference/beta/resources/security-collectinvestigationpackageresponseaction.md index b8dc6051f10..e928cc4c2f4 100644 --- a/api-reference/beta/resources/security-collectinvestigationpackageresponseaction.md +++ b/api-reference/beta/resources/security-collectinvestigationpackageresponseaction.md @@ -1,5 +1,5 @@ --- -title: "collectInvestigationPackageResponseAction resource type" +title: "collectInvestigationPackageResponseAction resource type (deprecated)" description: "Describes a response action that collects details for an investigation package." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# collectInvestigationPackageResponseAction resource type +# collectInvestigationPackageResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **collectInvestigationPackageResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that collects details for an investigation package. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-detectionaction.md b/api-reference/beta/resources/security-detectionaction.md index d124dc2956b..9cda4938c95 100644 --- a/api-reference/beta/resources/security-detectionaction.md +++ b/api-reference/beta/resources/security-detectionaction.md @@ -5,7 +5,7 @@ author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- # detectionAction resource type @@ -14,20 +14,25 @@ Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Describes the actions that will be taken after a detection is made by a [custom detection rule](../resources/security-detectionrule.md). +Describes the actions that are taken after a detection is made by a [custom detection rule](../resources/security-detectionrule.md), including the alert that is created and any automated actions that run against impacted entities. ## Properties -| Property | Type | Description | -|:--------------------|:----------------------------------------------------------------------------------------------|:----------------------------------------------------------------------| -| alertTemplate | [microsoft.graph.security.alertTemplate](../resources/security-alerttemplate.md) | Template for the generated alert. | -| organizationalScope | [microsoft.graph.security.organizationalScope](../resources/security-organizationalscope.md) | Groups to which the custom detection rule applies. | -| responseActions | [microsoft.graph.security.responseAction](../resources/security-responseaction.md) collection | Actions taken on impacted assets as set in the custom detection rule. | + +|Property|Type|Description| +|:---|:---|:---| +|alertTemplate|[microsoft.graph.security.alertTemplate](../resources/security-alerttemplate.md)|The template that defines the alert that is generated when this rule detects a match, including alert metadata (severity, title, description), entity mappings, custom details, and MITRE tactics.| +|automatedActions|[microsoft.graph.security.automatedActionSet](../resources/security-automatedactionset.md)|The set of automated actions to run against entities that match the detection. Replaces the deprecated **responseActions** property.| +|organizationalScope|[microsoft.graph.security.organizationalScope](../resources/security-organizationalscope.md)|The set of groups (for example, device groups) to which the parent custom detection rule applies.| +|responseActions (deprecated)|[microsoft.graph.security.responseAction](../resources/security-responseaction.md) collection|Actions taken on impacted assets as set in the custom detection rule. **Deprecated.** Use **automatedActions** instead. This property will be removed from this resource on 2026-10-01.| ## Relationships + None. ## JSON representation + The following JSON representation shows the resource type. + @@ -66,24 +71,25 @@ The following JSON representation shows the resource type. "@odata.type": "#microsoft.graph.security.detectionRule", "id": "String (identifier)", "displayName": "String", - "isEnabled": "Boolean", - "detectorId": "String", + "description": "String", + "status": "String", "createdBy": "String", "createdDateTime": "String (timestamp)", - "lastModifiedDateTime": "String (timestamp)", "lastModifiedBy": "String", + "lastModifiedDateTime": "String (timestamp)", "queryCondition": { "@odata.type": "microsoft.graph.security.queryCondition" }, "schedule": { "@odata.type": "microsoft.graph.security.ruleSchedule" }, - "lastRunDetails": { - "@odata.type": "microsoft.graph.security.runDetails" - }, "detectionAction": { "@odata.type": "microsoft.graph.security.detectionAction" + }, + "detectorId": "String", + "isEnabled": "Boolean", + "lastRunDetails": { + "@odata.type": "microsoft.graph.security.runDetails" } } -``` - +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-deviceaction.md b/api-reference/beta/resources/security-deviceaction.md new file mode 100644 index 00000000000..68cb04a039a --- /dev/null +++ b/api-reference/beta/resources/security-deviceaction.md @@ -0,0 +1,46 @@ +--- +title: "deviceAction resource type" +description: "Represents an automated action that targets a device returned by a custom detection rule query." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# deviceAction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an [automatedAction](../resources/security-automatedaction.md) that targets a device returned by a [detectionRule](../resources/security-detectionrule.md) hunting query. The action uses a device ID column from the query output to identify the device. + +Inherits from [automatedAction](../resources/security-automatedaction.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|deviceIdColumn|String|Name of the hunting-query result column that contains the device ID for the targeted device.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.deviceAction", + "deviceIdColumn": "String" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-disableuserresponseaction.md b/api-reference/beta/resources/security-disableuserresponseaction.md index 51050059162..7f10452ab88 100644 --- a/api-reference/beta/resources/security-disableuserresponseaction.md +++ b/api-reference/beta/resources/security-disableuserresponseaction.md @@ -1,6 +1,6 @@ --- -title: "disableUserResponseAction resource type" -description: "Describes a response action that temporarily prevents a user from logging in to the on premises network." +title: "disableUserResponseAction resource type (deprecated)" +description: "Describes a response action that temporarily prevents a user from logging in to the on-premises network." author: "mmekler" ms.subservice: "security" doc_type: resourcePageType @@ -8,13 +8,16 @@ ms.localizationpriority: medium ms.date: 03/06/2024 --- -# disableUserResponseAction resource type +# disableUserResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Describes a response action that temporarily prevents a user from logging in to the on premises network. +> [!IMPORTANT] +> The **disableUserResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + +Describes a response action that temporarily prevents a user from logging in to the on-premises network. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-dnsentitymapping.md b/api-reference/beta/resources/security-dnsentitymapping.md new file mode 100644 index 00000000000..c1202798be8 --- /dev/null +++ b/api-reference/beta/resources/security-dnsentitymapping.md @@ -0,0 +1,50 @@ +--- +title: "dnsEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a DNS entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# dnsEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a DNS entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|domainNameColumn|String|Name of the detection query column that maps to the domain name of the alert entity.| +|hostIpAddressColumn|String|Name of the detection query column that maps to the host IP address of the alert entity.| +|serverIpColumn|String|Name of the detection query column that maps to the server IP address of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.dnsEntityMapping", + "domainNameColumn": "String", + "hostIpAddressColumn": "String", + "serverIpColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-emailaction.md b/api-reference/beta/resources/security-emailaction.md new file mode 100644 index 00000000000..bb4b8582c80 --- /dev/null +++ b/api-reference/beta/resources/security-emailaction.md @@ -0,0 +1,48 @@ +--- +title: "emailAction resource type" +description: "Represents an automated action that targets an email message returned by a custom detection rule query." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# emailAction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an [automatedAction](../resources/security-automatedaction.md) that targets an email message returned by a [detectionRule](../resources/security-detectionrule.md) hunting query. The action uses message and recipient columns from the query output to identify the email message. + +Inherits from [automatedAction](../resources/security-automatedaction.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|networkMessageIdColumn|String|Name of the hunting-query result column that contains the network message ID of the targeted email message.| +|recipientColumn|String|Name of the hunting-query result column that contains the recipient of the targeted email message.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.emailAction", + "networkMessageIdColumn": "String", + "recipientColumn": "String" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-entitymapping.md b/api-reference/beta/resources/security-entitymapping.md new file mode 100644 index 00000000000..d69b72310f5 --- /dev/null +++ b/api-reference/beta/resources/security-entitymapping.md @@ -0,0 +1,58 @@ +--- +title: "entityMapping resource type" +description: "Abstract base type for entity mappings that translate detection query columns into alert entities." +author: "mmekler" +ms.date: 06/17/2026 +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +--- + +# entityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +This type is abstract and can't be instantiated directly. It's the base type for the following entity mapping types: + +- [accountEntityMapping](../resources/security-accountentitymapping.md) +- [amazonResourceEntityMapping](../resources/security-amazonresourceentitymapping.md) +- [azureResourceEntityMapping](../resources/security-azureresourceentitymapping.md) +- [cloudApplicationEntityMapping](../resources/security-cloudapplicationentitymapping.md) +- [dnsEntityMapping](../resources/security-dnsentitymapping.md) +- [fileEntityMapping](../resources/security-fileentitymapping.md) +- [googleCloudResourceEntityMapping](../resources/security-googlecloudresourceentitymapping.md) +- [hostEntityMapping](../resources/security-hostentitymapping.md) +- [ipEntityMapping](../resources/security-ipentitymapping.md) +- [mailboxEntityMapping](../resources/security-mailboxentitymapping.md) +- [mailClusterEntityMapping](../resources/security-mailclusterentitymapping.md) +- [mailMessageEntityMapping](../resources/security-mailmessageentitymapping.md) +- [oAuthApplicationEntityMapping](../resources/security-oauthapplicationentitymapping.md) +- [processEntityMapping](../resources/security-processentitymapping.md) +- [registryValueEntityMapping](../resources/security-registryvalueentitymapping.md) +- [securityGroupEntityMapping](../resources/security-securitygroupentitymapping.md) +- [urlEntityMapping](../resources/security-urlentitymapping.md) + +## Properties + +None. + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.entityMapping" +} +``` diff --git a/api-reference/beta/resources/security-entitymappingconfiguration.md b/api-reference/beta/resources/security-entitymappingconfiguration.md new file mode 100644 index 00000000000..15275746f19 --- /dev/null +++ b/api-reference/beta/resources/security-entitymappingconfiguration.md @@ -0,0 +1,109 @@ +--- +title: "entityMappingConfiguration resource type" +description: "Holds the per-entity-type mappings that translate detection query columns into alert entities." +author: "mmekler" +ms.date: 05/25/2026 +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +--- + +# entityMappingConfiguration resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Holds the per-entity-type mappings that translate detection query columns into the entities that are attached to the resulting alert. This resource is configured in the **entityMappings** property of an [alertTemplate](../resources/security-alerttemplate.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|accounts|[microsoft.graph.security.accountEntityMapping](../resources/security-accountentitymapping.md) collection|Mappings from detection query columns to account entities attached to the alert.| +|amazonResources|[microsoft.graph.security.amazonResourceEntityMapping](../resources/security-amazonresourceentitymapping.md) collection|Mappings from detection query columns to Amazon Web Services resource entities attached to the alert.| +|azureResources|[microsoft.graph.security.azureResourceEntityMapping](../resources/security-azureresourceentitymapping.md) collection|Mappings from detection query columns to Azure resource entities attached to the alert.| +|cloudApplications|[microsoft.graph.security.cloudApplicationEntityMapping](../resources/security-cloudapplicationentitymapping.md) collection|Mappings from detection query columns to cloud application entities attached to the alert.| +|dns|[microsoft.graph.security.dnsEntityMapping](../resources/security-dnsentitymapping.md) collection|Mappings from detection query columns to DNS entities attached to the alert.| +|files|[microsoft.graph.security.fileEntityMapping](../resources/security-fileentitymapping.md) collection|Mappings from detection query columns to file entities attached to the alert.| +|googleCloudResources|[microsoft.graph.security.googleCloudResourceEntityMapping](../resources/security-googlecloudresourceentitymapping.md) collection|Mappings from detection query columns to Google Cloud resource entities attached to the alert.| +|hosts|[microsoft.graph.security.hostEntityMapping](../resources/security-hostentitymapping.md) collection|Mappings from detection query columns to host entities attached to the alert.| +|ips|[microsoft.graph.security.ipEntityMapping](../resources/security-ipentitymapping.md) collection|Mappings from detection query columns to IP address entities attached to the alert.| +|mailboxes|[microsoft.graph.security.mailboxEntityMapping](../resources/security-mailboxentitymapping.md) collection|Mappings from detection query columns to mailbox entities attached to the alert.| +|mailClusters|[microsoft.graph.security.mailClusterEntityMapping](../resources/security-mailclusterentitymapping.md) collection|Mappings from detection query columns to mail cluster entities attached to the alert.| +|mailMessages|[microsoft.graph.security.mailMessageEntityMapping](../resources/security-mailmessageentitymapping.md) collection|Mappings from detection query columns to mail message entities attached to the alert.| +|oAuthApplications|[microsoft.graph.security.oAuthApplicationEntityMapping](../resources/security-oauthapplicationentitymapping.md) collection|Mappings from detection query columns to OAuth application entities attached to the alert.| +|processes|[microsoft.graph.security.processEntityMapping](../resources/security-processentitymapping.md) collection|Mappings from detection query columns to process entities attached to the alert.| +|registryValues|[microsoft.graph.security.registryValueEntityMapping](../resources/security-registryvalueentitymapping.md) collection|Mappings from detection query columns to registry value entities attached to the alert.| +|securityGroups|[microsoft.graph.security.securityGroupEntityMapping](../resources/security-securitygroupentitymapping.md) collection|Mappings from detection query columns to security group entities attached to the alert.| +|urls|[microsoft.graph.security.urlEntityMapping](../resources/security-urlentitymapping.md) collection|Mappings from detection query columns to URL entities attached to the alert.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.entityMappingConfiguration", + "accounts": [ + { "@odata.type": "microsoft.graph.security.accountEntityMapping" } + ], + "amazonResources": [ + { "@odata.type": "microsoft.graph.security.amazonResourceEntityMapping" } + ], + "azureResources": [ + { "@odata.type": "microsoft.graph.security.azureResourceEntityMapping" } + ], + "cloudApplications": [ + { "@odata.type": "microsoft.graph.security.cloudApplicationEntityMapping" } + ], + "dns": [ + { "@odata.type": "microsoft.graph.security.dnsEntityMapping" } + ], + "files": [ + { "@odata.type": "microsoft.graph.security.fileEntityMapping" } + ], + "googleCloudResources": [ + { "@odata.type": "microsoft.graph.security.googleCloudResourceEntityMapping" } + ], + "hosts": [ + { "@odata.type": "microsoft.graph.security.hostEntityMapping" } + ], + "ips": [ + { "@odata.type": "microsoft.graph.security.ipEntityMapping" } + ], + "mailboxes": [ + { "@odata.type": "microsoft.graph.security.mailboxEntityMapping" } + ], + "mailClusters": [ + { "@odata.type": "microsoft.graph.security.mailClusterEntityMapping" } + ], + "mailMessages": [ + { "@odata.type": "microsoft.graph.security.mailMessageEntityMapping" } + ], + "oAuthApplications": [ + { "@odata.type": "microsoft.graph.security.oAuthApplicationEntityMapping" } + ], + "processes": [ + { "@odata.type": "microsoft.graph.security.processEntityMapping" } + ], + "registryValues": [ + { "@odata.type": "microsoft.graph.security.registryValueEntityMapping" } + ], + "securityGroups": [ + { "@odata.type": "microsoft.graph.security.securityGroupEntityMapping" } + ], + "urls": [ + { "@odata.type": "microsoft.graph.security.urlEntityMapping" } + ] +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-fileaction.md b/api-reference/beta/resources/security-fileaction.md new file mode 100644 index 00000000000..70eccf1404d --- /dev/null +++ b/api-reference/beta/resources/security-fileaction.md @@ -0,0 +1,52 @@ +--- +title: "fileAction resource type" +description: "Represents an automated action that targets files returned by a custom detection rule query." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# fileAction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an [automatedAction](../resources/security-automatedaction.md) that targets files returned by a [detectionRule](../resources/security-detectionrule.md) hunting query. The action uses file hash columns from the query output to identify the files. + +Inherits from [automatedAction](../resources/security-automatedaction.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|deviceGroupNames|String collection|Names of the device groups where the file action applies.| +|sha1Column|String|Name of the hunting-query result column that contains the SHA-1 hash of the targeted file.| +|sha256Column|String|Name of the hunting-query result column that contains the SHA-256 hash of the targeted file.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.fileAction", + "deviceGroupNames": [ + "String" + ], + "sha1Column": "String", + "sha256Column": "String" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-fileentitymapping.md b/api-reference/beta/resources/security-fileentitymapping.md new file mode 100644 index 00000000000..5ce7c7c4b38 --- /dev/null +++ b/api-reference/beta/resources/security-fileentitymapping.md @@ -0,0 +1,50 @@ +--- +title: "fileEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a file entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# fileEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a file entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|nameColumn|String|Name of the detection query column that maps to the name of the alert entity.| +|sha1Column|String|Name of the detection query column that maps to the SHA-1 hash of the alert entity.| +|sha256Column|String|Name of the detection query column that maps to the SHA-256 hash of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.fileEntityMapping", + "nameColumn": "String", + "sha1Column": "String", + "sha256Column": "String" +} +``` diff --git a/api-reference/beta/resources/security-forceuserpasswordresetresponseaction.md b/api-reference/beta/resources/security-forceuserpasswordresetresponseaction.md index 1a13daab878..3a264943ef3 100644 --- a/api-reference/beta/resources/security-forceuserpasswordresetresponseaction.md +++ b/api-reference/beta/resources/security-forceuserpasswordresetresponseaction.md @@ -1,5 +1,5 @@ --- -title: "forceUserPasswordResetResponseAction resource type" +title: "forceUserPasswordResetResponseAction resource type (deprecated)" description: "Describes a response action that prompts the user to change their password the next time they sign in." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# forceUserPasswordResetResponseAction resource type +# forceUserPasswordResetResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **forceUserPasswordResetResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that prompts the user to change their password the next time they sign in. diff --git a/api-reference/beta/resources/security-googlecloudresourceentitymapping.md b/api-reference/beta/resources/security-googlecloudresourceentitymapping.md new file mode 100644 index 00000000000..a173505022f --- /dev/null +++ b/api-reference/beta/resources/security-googlecloudresourceentitymapping.md @@ -0,0 +1,46 @@ +--- +title: "googleCloudResourceEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a Google Cloud resource entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# googleCloudResourceEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a Google Cloud resource entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|fullResourceNameColumn|String|Name of the detection query column that maps to the full resource name of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.googleCloudResourceEntityMapping", + "fullResourceNameColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-harddeleteresponseaction.md b/api-reference/beta/resources/security-harddeleteresponseaction.md index eb89308bc19..e19c9a3e0ac 100644 --- a/api-reference/beta/resources/security-harddeleteresponseaction.md +++ b/api-reference/beta/resources/security-harddeleteresponseaction.md @@ -1,5 +1,5 @@ --- -title: "hardDeleteResponseAction resource type" +title: "hardDeleteResponseAction resource type (deprecated)" description: "Describes a response action that hard-deletes an email message." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# hardDeleteResponseAction resource type +# hardDeleteResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **hardDeleteResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that hard-deletes an email message. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-hostentitymapping.md b/api-reference/beta/resources/security-hostentitymapping.md new file mode 100644 index 00000000000..dc1169958ae --- /dev/null +++ b/api-reference/beta/resources/security-hostentitymapping.md @@ -0,0 +1,54 @@ +--- +title: "hostEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a host entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# hostEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a host entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|deviceIdColumn|String|Name of the detection query column that maps to the device ID of the alert entity.| +|dnsDomainColumn|String|Name of the detection query column that maps to the DNS domain of the alert entity.| +|nameColumn|String|Name of the detection query column that maps to the name of the alert entity.| +|netBiosNameColumn|String|Name of the detection query column that maps to the NetBIOS name of the alert entity.| +|ntDomainColumn|String|Name of the detection query column that maps to the NT domain of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.hostEntityMapping", + "deviceIdColumn": "String", + "dnsDomainColumn": "String", + "nameColumn": "String", + "netBiosNameColumn": "String", + "ntDomainColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-impactedasset.md b/api-reference/beta/resources/security-impactedasset.md index 1dc4ad3cf69..d9b0b95ef76 100644 --- a/api-reference/beta/resources/security-impactedasset.md +++ b/api-reference/beta/resources/security-impactedasset.md @@ -1,19 +1,22 @@ --- -title: "impactedAsset resource type" +title: "impactedAsset resource type (deprecated)" description: "Represents an asset that was identified in an alert triggered by a custom detection rule." author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- -# impactedAsset resource type +# impactedAsset resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **impactedAsset** resource type and all derived types are deprecated and will be removed on 2026-10-01. Use [entityMapping](../resources/security-entitymapping.md) and its derived types via `alertTemplate.entityMappings` instead. See the [custom detection rule](../resources/security-detectionrule.md) topic for the new shape. + Represents an asset that was identified in an alert triggered by a [custom detection rule](../resources/security-detectionrule.md). This type is abstract, and serves as the base type for the following asset types. diff --git a/api-reference/beta/resources/security-impacteddeviceasset.md b/api-reference/beta/resources/security-impacteddeviceasset.md index 467e28f1f7c..02466b374df 100644 --- a/api-reference/beta/resources/security-impacteddeviceasset.md +++ b/api-reference/beta/resources/security-impacteddeviceasset.md @@ -1,19 +1,22 @@ --- -title: "impactedDeviceAsset resource type" +title: "impactedDeviceAsset resource type (deprecated)" description: "Represents a device that was identified in an alert triggered by a custom detection rule." author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- -# impactedDeviceAsset resource type +# impactedDeviceAsset resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **impactedDeviceAsset** resource type is deprecated and will be removed on 2026-10-01. Use [entityMapping](../resources/security-entitymapping.md) and its derived types via `alertTemplate.entityMappings` instead. See the [custom detection rule](../resources/security-detectionrule.md) topic for the new shape. + Represents a device that was identified in an alert triggered by a [custom detection rule](../resources/security-detectionrule.md). Inherits from [microsoft.graph.security.impactedAsset](../resources/security-impactedasset.md). diff --git a/api-reference/beta/resources/security-impactedmailboxasset.md b/api-reference/beta/resources/security-impactedmailboxasset.md index decfc981760..f69bd1ba435 100644 --- a/api-reference/beta/resources/security-impactedmailboxasset.md +++ b/api-reference/beta/resources/security-impactedmailboxasset.md @@ -1,19 +1,22 @@ --- -title: "impactedMailboxAsset resource type" +title: "impactedMailboxAsset resource type (deprecated)" description: "Represents a mailbox that was identified in an alert triggered by a custom detection rule." author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- -# impactedMailboxAsset resource type +# impactedMailboxAsset resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **impactedMailboxAsset** resource type is deprecated and will be removed on 2026-10-01. Use [entityMapping](../resources/security-entitymapping.md) and its derived types via `alertTemplate.entityMappings` instead. See the [custom detection rule](../resources/security-detectionrule.md) topic for the new shape. + Represents a mailbox that was identified in an alert triggered by a [custom detection rule](../resources/security-detectionrule.md). Inherits from [microsoft.graph.security.impactedAsset](../resources/security-impactedasset.md). diff --git a/api-reference/beta/resources/security-impacteduserasset.md b/api-reference/beta/resources/security-impacteduserasset.md index 082e6e53f7b..ca3a7b8babe 100644 --- a/api-reference/beta/resources/security-impacteduserasset.md +++ b/api-reference/beta/resources/security-impacteduserasset.md @@ -1,19 +1,22 @@ --- -title: "impactedUserAsset resource type" +title: "impactedUserAsset resource type (deprecated)" description: "Represents a user account that was identified in an alert triggered by a custom detection rule." author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- -# impactedUserAsset resource type +# impactedUserAsset resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **impactedUserAsset** resource type is deprecated and will be removed on 2026-10-01. Use [entityMapping](../resources/security-entitymapping.md) and its derived types via `alertTemplate.entityMappings` instead. See the [custom detection rule](../resources/security-detectionrule.md) topic for the new shape. + Represents a user account that was identified in an alert triggered by a [custom detection rule](../resources/security-detectionrule.md). Inherits from [microsoft.graph.security.impactedAsset](../resources/security-impactedasset.md). diff --git a/api-reference/beta/resources/security-incidenttaskresponseaction.md b/api-reference/beta/resources/security-incidenttaskresponseaction.md index 907a993f6a1..7fd01c396a7 100644 --- a/api-reference/beta/resources/security-incidenttaskresponseaction.md +++ b/api-reference/beta/resources/security-incidenttaskresponseaction.md @@ -1,5 +1,5 @@ --- -title: "incidentTaskResponseAction resource type" +title: "incidentTaskResponseAction resource type (deprecated)" description: "Represents a base type for all incident task response actions in Microsoft Defender XDR." author: "BenAlfasi" ms.date: 06/25/2025 @@ -8,12 +8,15 @@ ms.subservice: "security" doc_type: resourcePageType --- -# incidentTaskResponseAction resource type +# incidentTaskResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **incidentTaskResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Represents the base type for all incident task response actions in Microsoft Defender XDR. This is an abstract type that cannot be instantiated directly but serves as the parent type for the following specific response actions that can be executed on incident tasks. - [stopAndQuarantineFileIncidentTaskResponseAction](../resources/security-stopandquarantinefileincidenttaskresponseaction.md) - Used to stop and quarantine a file. diff --git a/api-reference/beta/resources/security-initiateinvestigationresponseaction.md b/api-reference/beta/resources/security-initiateinvestigationresponseaction.md index a163ee93080..b87653bd9f6 100644 --- a/api-reference/beta/resources/security-initiateinvestigationresponseaction.md +++ b/api-reference/beta/resources/security-initiateinvestigationresponseaction.md @@ -1,5 +1,5 @@ --- -title: "initiateInvestigationResponseAction resource type" +title: "initiateInvestigationResponseAction resource type (deprecated)" description: "Describes a response action that starts an automated investigation of a device." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# initiateInvestigationResponseAction resource type +# initiateInvestigationResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **initiateInvestigationResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that starts an automated investigation of a device. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-ipentitymapping.md b/api-reference/beta/resources/security-ipentitymapping.md new file mode 100644 index 00000000000..16a57ea3e38 --- /dev/null +++ b/api-reference/beta/resources/security-ipentitymapping.md @@ -0,0 +1,48 @@ +--- +title: "ipEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to an IP entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# ipEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to an IP entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|addressColumn|String|Name of the detection query column that maps to the IP address of the alert entity.| +|scopeColumn|String|Name of the detection query column that maps to the scope of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.ipEntityMapping", + "addressColumn": "String", + "scopeColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-isolatedeviceaction.md b/api-reference/beta/resources/security-isolatedeviceaction.md new file mode 100644 index 00000000000..d940028fd75 --- /dev/null +++ b/api-reference/beta/resources/security-isolatedeviceaction.md @@ -0,0 +1,48 @@ +--- +title: "isolateDeviceAction resource type" +description: "Represents an automated action that isolates a device returned by a custom detection rule query." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# isolateDeviceAction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a [deviceAction](../resources/security-deviceaction.md) that isolates a device returned by a [detectionRule](../resources/security-detectionrule.md) hunting query. The action uses the device ID column from the query output to identify the device to isolate. + +Inherits from [deviceAction](../resources/security-deviceaction.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|deviceIdColumn|String|Name of the hunting-query result column that contains the device ID for the targeted device. Inherited from [deviceAction](../resources/security-deviceaction.md).| +|isolationType|microsoft.graph.security.isolationType|Type of isolation to apply to the device. The possible values are: `full`, `selective`, `unknownFutureValue`.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.isolateDeviceAction", + "deviceIdColumn": "String", + "isolationType": "String" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-isolatedeviceresponseaction.md b/api-reference/beta/resources/security-isolatedeviceresponseaction.md index 720169b69c8..dc845d212c1 100644 --- a/api-reference/beta/resources/security-isolatedeviceresponseaction.md +++ b/api-reference/beta/resources/security-isolatedeviceresponseaction.md @@ -1,5 +1,5 @@ --- -title: "isolateDeviceResponseAction resource type" +title: "isolateDeviceResponseAction resource type (deprecated)" description: "Describes a response action that uses Microsoft Defender to apply full network isolation to a device." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# isolateDeviceResponseAction resource type +# isolateDeviceResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **isolateDeviceResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that uses Microsoft Defender to apply full network isolation to a device. This response action prevents the device from connecting to any application or service. diff --git a/api-reference/beta/resources/security-mailboxentitymapping.md b/api-reference/beta/resources/security-mailboxentitymapping.md new file mode 100644 index 00000000000..dd8050ae838 --- /dev/null +++ b/api-reference/beta/resources/security-mailboxentitymapping.md @@ -0,0 +1,46 @@ +--- +title: "mailboxEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a mailbox entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# mailboxEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a mailbox entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|primaryAddressColumn|String|Name of the detection query column that maps to the primary email address of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.mailboxEntityMapping", + "primaryAddressColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-mailclusterentitymapping.md b/api-reference/beta/resources/security-mailclusterentitymapping.md new file mode 100644 index 00000000000..8f010c388ad --- /dev/null +++ b/api-reference/beta/resources/security-mailclusterentitymapping.md @@ -0,0 +1,48 @@ +--- +title: "mailClusterEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a mail cluster entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# mailClusterEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a mail cluster entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|queryColumn|String|Name of the detection query column that maps to the query of the alert entity.| +|sourceColumn|String|Name of the detection query column that maps to the source of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.mailClusterEntityMapping", + "queryColumn": "String", + "sourceColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-mailmessageentitymapping.md b/api-reference/beta/resources/security-mailmessageentitymapping.md new file mode 100644 index 00000000000..8acb4c3dfdd --- /dev/null +++ b/api-reference/beta/resources/security-mailmessageentitymapping.md @@ -0,0 +1,52 @@ +--- +title: "mailMessageEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a mail message entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# mailMessageEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a mail message entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|networkMessageIdColumn|String|Name of the detection query column that maps to the network message ID of the alert entity.| +|recipientColumn|String|Name of the detection query column that maps to the recipient of the alert entity.| +|senderColumn|String|Name of the detection query column that maps to the sender of the alert entity.| +|subjectColumn|String|Name of the detection query column that maps to the subject of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.mailMessageEntityMapping", + "networkMessageIdColumn": "String", + "recipientColumn": "String", + "senderColumn": "String", + "subjectColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-markuserascompromisedresponseaction.md b/api-reference/beta/resources/security-markuserascompromisedresponseaction.md index d321edc9273..814f92b073a 100644 --- a/api-reference/beta/resources/security-markuserascompromisedresponseaction.md +++ b/api-reference/beta/resources/security-markuserascompromisedresponseaction.md @@ -1,5 +1,5 @@ --- -title: "markUserAsCompromisedResponseAction resource type" +title: "markUserAsCompromisedResponseAction resource type (deprecated)" description: "Describes a response action that sets the user's risk level to 'high' in Microsoft Entra ID." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# markUserAsCompromisedResponseAction resource type +# markUserAsCompromisedResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **markUserAsCompromisedResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that sets the user's risk level to "high" in Microsoft Entra ID. This response action sets the user's risk level to `high` in Microsoft Entra ID, which triggers the identity protection policies for a `high` risk level. diff --git a/api-reference/beta/resources/security-mitretactic.md b/api-reference/beta/resources/security-mitretactic.md new file mode 100644 index 00000000000..46384a5a478 --- /dev/null +++ b/api-reference/beta/resources/security-mitretactic.md @@ -0,0 +1,49 @@ +--- +title: "mitreTactic resource type" +description: "Represents a MITRE ATT&CK tactic and the techniques used within it." +author: "mmekler" +ms.date: 05/25/2026 +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +--- + +# mitreTactic resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a MITRE ATT&CK tactic and the techniques used within it. This resource is configured in the **tactics** property of an [alertTemplate](../resources/security-alerttemplate.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|tactic|String|The MITRE tactic identifier, for example, `Exploit`.| +|techniques|[microsoft.graph.security.mitreTechnique](../resources/security-mitretechnique.md) collection|The techniques observed within this tactic.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.mitreTactic", + "tactic": "String", + "techniques": [ + { + "@odata.type": "microsoft.graph.security.mitreTechnique" + } + ] +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-mitretechnique.md b/api-reference/beta/resources/security-mitretechnique.md new file mode 100644 index 00000000000..b12ffe95794 --- /dev/null +++ b/api-reference/beta/resources/security-mitretechnique.md @@ -0,0 +1,47 @@ +--- +title: "mitreTechnique resource type" +description: "Represents a MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) technique and optional subtechniques." +author: "mmekler" +ms.date: 05/25/2026 +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +--- + +# mitreTechnique resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) technique and optional subtechniques. This resource is configured in the **techniques** property of a [mitreTactic](../resources/security-mitretactic.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|subTechniques|String collection|The MITRE ATT&CK subtechnique identifiers that are associated with this technique, for example, `T1059.001`.| +|technique|String|The MITRE ATT&CK technique identifier, for example, `T1059`.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.mitreTechnique", + "subTechniques": [ + "String" + ], + "technique": "String" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-movetodeleteditemsresponseaction.md b/api-reference/beta/resources/security-movetodeleteditemsresponseaction.md index 93abd916ad2..bd1e3fcd1ea 100644 --- a/api-reference/beta/resources/security-movetodeleteditemsresponseaction.md +++ b/api-reference/beta/resources/security-movetodeleteditemsresponseaction.md @@ -1,5 +1,5 @@ --- -title: "moveToDeletedItemsResponseAction resource type" +title: "moveToDeletedItemsResponseAction resource type (deprecated)" description: "Describes an email response action that moves the email message to the user's Deleted items folder." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# moveToDeletedItemsResponseAction resource type +# moveToDeletedItemsResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **moveToDeletedItemsResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes an email response action that moves the email message to the user's Deleted items folder. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-movetoinboxresponseaction.md b/api-reference/beta/resources/security-movetoinboxresponseaction.md index 8499843721a..05d8dd9d2d6 100644 --- a/api-reference/beta/resources/security-movetoinboxresponseaction.md +++ b/api-reference/beta/resources/security-movetoinboxresponseaction.md @@ -1,5 +1,5 @@ --- -title: "moveToInboxResponseAction resource type" +title: "moveToInboxResponseAction resource type (deprecated)" description: "Describes an email response action that moves the email message to the user's Inbox." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# moveToInboxResponseAction resource type +# moveToInboxResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **moveToInboxResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes an email response action that moves the email message to the user's Inbox. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-movetojunkresponseaction.md b/api-reference/beta/resources/security-movetojunkresponseaction.md index 359d0013f7e..6a8db2dcd35 100644 --- a/api-reference/beta/resources/security-movetojunkresponseaction.md +++ b/api-reference/beta/resources/security-movetojunkresponseaction.md @@ -1,5 +1,5 @@ --- -title: "moveToJunkResponseAction resource type" +title: "moveToJunkResponseAction resource type (deprecated)" description: "Describes an email response action that moves the email message to the user's Junk folder." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# moveToJunkResponseAction resource type +# moveToJunkResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **moveToJunkResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes an email response action that moves the email message to the user's Junk folder. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-oauthapplicationentitymapping.md b/api-reference/beta/resources/security-oauthapplicationentitymapping.md new file mode 100644 index 00000000000..41d4238d24f --- /dev/null +++ b/api-reference/beta/resources/security-oauthapplicationentitymapping.md @@ -0,0 +1,46 @@ +--- +title: "oAuthApplicationEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to an OAuth application entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# oAuthApplicationEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to an OAuth application entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|oAuthAppIdColumn|String|Name of the detection query column that maps to the OAuth application ID of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.oAuthApplicationEntityMapping", + "oAuthAppIdColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-organizationalscope.md b/api-reference/beta/resources/security-organizationalscope.md index 50cd166b947..157865ef6ff 100644 --- a/api-reference/beta/resources/security-organizationalscope.md +++ b/api-reference/beta/resources/security-organizationalscope.md @@ -5,7 +5,7 @@ author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 06/03/2026 --- # organizationalScope resource type @@ -17,10 +17,12 @@ Namespace: microsoft.graph.security Represents a scope that specifies which devices are covered by a [custom detection rule's](../resources/security-detectionrule.md) [detection action](../resources/security-detectionaction.md). ## Properties -| Property | Type | Description | -|:-----------|:--------------------------------------------------------------------------------------|:----------------------------------------------------------------------------------------------------| -| scopeNames | String collection | List of groups to which the custom detection rule applies. | -| scopeType | [microsoft.graph.security.scopeType](../resources/enums-security.md#scopetype-values) | The type of the organizational scope. The possible values are: `deviceGroup`, `unknownFutureValue`. | + +|Property|Type|Description| +|:---|:---|:---| +|deviceGroups|String collection|List of device groups to which the custom detection rule applies.| +|scopeNames (deprecated)|String collection|List of groups to which the custom detection rule applies. **Deprecated.** Use **deviceGroups** instead. This property will be removed from this resource on October 1, 2026.| +|scopeType (deprecated)|[microsoft.graph.security.scopeType](../resources/enums-security.md#scopetype-values)|The type of the organizational scope. The possible values are: `deviceGroup`, `unknownFutureValue`. **Deprecated.** Use **deviceGroups** instead. This property will be removed from this resource on October 1, 2026.| ## Relationships None. @@ -35,6 +37,9 @@ The following JSON representation shows the resource type. ``` json { "@odata.type": "#microsoft.graph.security.organizationalScope", + "deviceGroups": [ + "String" + ], "scopeType": "String", "scopeNames": [ "String" @@ -42,3 +47,4 @@ The following JSON representation shows the resource type. } ``` + diff --git a/api-reference/beta/resources/security-processentitymapping.md b/api-reference/beta/resources/security-processentitymapping.md new file mode 100644 index 00000000000..0e1e5f3eb61 --- /dev/null +++ b/api-reference/beta/resources/security-processentitymapping.md @@ -0,0 +1,48 @@ +--- +title: "processEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a process entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# processEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a process entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|sha1Column|String|Name of the detection query column that maps to the SHA-1 hash of the alert entity.| +|sha256Column|String|Name of the detection query column that maps to the SHA-256 hash of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.processEntityMapping", + "sha1Column": "String", + "sha256Column": "String" +} +``` diff --git a/api-reference/beta/resources/security-protectionrule.md b/api-reference/beta/resources/security-protectionrule.md deleted file mode 100644 index 46bcc66f9f0..00000000000 --- a/api-reference/beta/resources/security-protectionrule.md +++ /dev/null @@ -1,58 +0,0 @@ ---- -title: "protectionRule resource type" -description: "Represents a rule, which contains basic properties such as ID, name, and so on." -author: "mmekler" -ms.localizationpriority: medium -ms.subservice: "security" -doc_type: resourcePageType -ms.date: 03/06/2024 ---- - -# protectionRule resource type - -Namespace: microsoft.graph.security - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -Represents a rule, which contains basic properties such as ID, name, and so on. -This type is abstract. - -Inherits from [microsoft.graph.entity](../resources/entity.md). - -## Properties -| Property | Type | Description | -|:---------------------|:---------------|:-------------------------------------------------------| -| createdBy | String | Name of the user or application that created the rule. | -| createdDateTime | DateTimeOffset | Timestamp of rule creation. | -| displayName | String | Name of the rule. | -| id | String | Unique identifier to represent the rule. | -| isEnabled | Boolean | Whether rule is turned on for the tenant. | -| lastModifiedBy | String | Name of the user or application who last updated the rule. | -| lastModifiedDateTime | DateTimeOffset | Timestamp of when the rule was last updated. | - -## Relationships -None. - -## JSON representation -The following JSON representation shows the resource type. - -``` json -{ - "@odata.type": "#microsoft.graph.security.protectionRule", - "id": "String (identifier)", - "displayName": "String", - "isEnabled": "Boolean", - "createdBy": "String", - "createdDateTime": "String (timestamp)", - "lastModifiedDateTime": "String (timestamp)", - "lastModifiedBy": "String" -} -``` - diff --git a/api-reference/beta/resources/security-querycondition.md b/api-reference/beta/resources/security-querycondition.md index d494edbc351..11fab6b4f2c 100644 --- a/api-reference/beta/resources/security-querycondition.md +++ b/api-reference/beta/resources/security-querycondition.md @@ -5,7 +5,7 @@ author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- # queryCondition resource type @@ -17,10 +17,11 @@ Namespace: microsoft.graph.security Represents the [advanced hunting](../api/security-security-runhuntingquery.md) query that defines the behavior of a [custom detection rule](../resources/security-detectionrule.md). ## Properties -| Property | Type | Description | -|:---------------------|:---------------|:---------------------------------------------------------------------------| -| lastModifiedDateTime | DateTimeOffset | Timestamp of when the query in the custom detection rule was last updated. | -| queryText | String | Contents of the query. | + +|Property|Type|Description| +|:---|:---|:---| +|queryText|String|Contents of the query.| +|lastModifiedDateTime (deprecated)|DateTimeOffset|Timestamp of when the query in the custom detection rule was last updated. **Deprecated.** This property will be removed from this resource on 2026-10-01.| ## Relationships None. diff --git a/api-reference/beta/resources/security-registryvalueentitymapping.md b/api-reference/beta/resources/security-registryvalueentitymapping.md new file mode 100644 index 00000000000..6fca0970b67 --- /dev/null +++ b/api-reference/beta/resources/security-registryvalueentitymapping.md @@ -0,0 +1,48 @@ +--- +title: "registryValueEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a registry value entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# registryValueEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a registry value entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|keyColumn|String|Name of the detection query column that maps to the registry key of the alert entity.| +|valueNameColumn|String|Name of the detection query column that maps to the value name of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.registryValueEntityMapping", + "keyColumn": "String", + "valueNameColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-responseaction.md b/api-reference/beta/resources/security-responseaction.md index 36ff896a97d..465c7d4d84f 100644 --- a/api-reference/beta/resources/security-responseaction.md +++ b/api-reference/beta/resources/security-responseaction.md @@ -1,20 +1,23 @@ --- -title: "responseAction resource type" +title: "responseAction resource type (deprecated)" description: "Describes an action taken on impacted assets as set in the custom detection rule." author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- -# responseAction resource type +# responseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Describes an action taken on [impacted assets](../resources/security-impactedasset.md) as set in a [custom detection rule](../resources/security-detectionrule.md). For more information, see [response actions](/microsoft-365/security/defender/custom-detection-rules#4-specify-actions) +> [!IMPORTANT] +> The **responseAction** resource type and all 17 derived types are deprecated and will be removed on 2026-10-01. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + +Describes an action taken on [impacted assets](../resources/security-impactedasset.md) as set in a [custom detection rule](../resources/security-detectionrule.md). For more information, see [response actions](/microsoft-365/security/defender/custom-detection-rules#4-specify-actions). This type is abstract and has multiple response action types that are derived from it: diff --git a/api-reference/beta/resources/security-restrictappexecutionresponseaction.md b/api-reference/beta/resources/security-restrictappexecutionresponseaction.md index 69e45045097..32ede773079 100644 --- a/api-reference/beta/resources/security-restrictappexecutionresponseaction.md +++ b/api-reference/beta/resources/security-restrictappexecutionresponseaction.md @@ -1,5 +1,5 @@ --- -title: "restrictAppExecutionResponseAction resource type" +title: "restrictAppExecutionResponseAction resource type (deprecated)" description: "Describes a response action that sets restrictions on device to allow only files that are signed with a Microsoft-issued certificate to run." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# restrictAppExecutionResponseAction resource type +# restrictAppExecutionResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **restrictAppExecutionResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that sets restrictions on device to allow only files that are signed with a Microsoft-issued certificate to run. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-ruleschedule.md b/api-reference/beta/resources/security-ruleschedule.md index 5ff834fcfc0..063a367c7b3 100644 --- a/api-reference/beta/resources/security-ruleschedule.md +++ b/api-reference/beta/resources/security-ruleschedule.md @@ -5,7 +5,7 @@ author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- # ruleSchedule resource type @@ -17,10 +17,12 @@ Namespace: microsoft.graph.security Represents how often the [custom detection rule](../resources/security-detectionrule.md) runs, and when it next runs. ## Properties -| Property | Type | Description | -|:----------------|:---------------|:--------------------------------------------------------------------------------------------------------------------------------------------------| -| nextRunDateTime | DateTimeOffset | Timestamp of the custom detection rule's next scheduled run. | -| period | String | How often the detection rule is set to run. The allowed values are: `0`, `1H`, `3H`, `12H`, or `24H`. "0" signifies the rule is run continuously. | + +|Property|Type|Description| +|:---|:---|:---| +|frequency|Duration|The recurring time interval at which the rule runs (ISO 8601 duration, for example P1D for daily, PT1H for hourly).| +|nextRunDateTime (deprecated)|DateTimeOffset|Timestamp of the custom detection rule's next scheduled run. **Deprecated.** This property will be removed from this resource on 2026-10-01.| +|period (deprecated)|String|How often the detection rule is set to run. The allowed values are: `0`, `1H`, `3H`, `12H`, or `24H`. `0` signifies the rule is run continuously. **Deprecated.** Use **frequency** instead. This property will be removed from this resource on 2026-10-01.| ## Relationships None. @@ -35,8 +37,9 @@ The following JSON representation shows the resource type. ``` json { "@odata.type": "#microsoft.graph.security.ruleSchedule", - "period": "String", - "nextRunDateTime": "String (timestamp)" + "frequency": "String (duration)", + "nextRunDateTime": "String (timestamp)", + "period": "String" } ``` diff --git a/api-reference/beta/resources/security-rulesroot.md b/api-reference/beta/resources/security-rulesroot.md new file mode 100644 index 00000000000..8b0baaeb296 --- /dev/null +++ b/api-reference/beta/resources/security-rulesroot.md @@ -0,0 +1,46 @@ +--- +title: "rulesRoot resource type" +description: "Container that holds the custom detection rules in Microsoft Defender XDR." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# rulesRoot resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Container that holds the [custom detection rules](../resources/security-detectionrule.md) configured for the tenant in Microsoft Defender XDR. Accessed as a singleton from the [security](../resources/security.md) resource through the `rules` navigation property. + +## Methods + +None. + +## Properties + +None. + +## Relationships + +|Relationship|Type|Description| +|:---|:---|:---| +|detectionRules|[microsoft.graph.security.detectionRule](../resources/security-detectionrule.md) collection|The custom detection rules configured for the tenant.| + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.rulesRoot" +} +``` diff --git a/api-reference/beta/resources/security-runantivirusscanresponseaction.md b/api-reference/beta/resources/security-runantivirusscanresponseaction.md index d30a1e943c1..b03f6ad3dd3 100644 --- a/api-reference/beta/resources/security-runantivirusscanresponseaction.md +++ b/api-reference/beta/resources/security-runantivirusscanresponseaction.md @@ -1,5 +1,5 @@ --- -title: "runAntivirusScanResponseAction resource type" +title: "runAntivirusScanResponseAction resource type (deprecated)" description: "Describes a response action that performs a full Microsoft Defender Antivirus scan on the device." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# runAntivirusScanResponseAction resource type +# runAntivirusScanResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **runAntivirusScanResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that performs a full Microsoft Defender Antivirus scan on the device. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-rundetails.md b/api-reference/beta/resources/security-rundetails.md index 397d9ef006a..c7631a79ae2 100644 --- a/api-reference/beta/resources/security-rundetails.md +++ b/api-reference/beta/resources/security-rundetails.md @@ -1,19 +1,22 @@ --- -title: "runDetails resource type" +title: "runDetails resource type (deprecated)" description: "Represents an instance of a custom detection rule run." author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- -# runDetails resource type +# runDetails resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **runDetails** resource type is deprecated and will be removed on 2026-10-01. Run history is no longer surfaced through the custom detection rules API. + Represents an instance of a [custom detection rule](../resources/security-detectionrule.md) run. ## Properties diff --git a/api-reference/beta/resources/security-securitygroupentitymapping.md b/api-reference/beta/resources/security-securitygroupentitymapping.md new file mode 100644 index 00000000000..2e581dc0e6c --- /dev/null +++ b/api-reference/beta/resources/security-securitygroupentitymapping.md @@ -0,0 +1,50 @@ +--- +title: "securityGroupEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a security group entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# securityGroupEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a security group entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|distinguishedNameColumn|String|Name of the detection query column that maps to the distinguished name of the alert entity.| +|objectIdColumn|String|Name of the detection query column that maps to the object ID of the alert entity.| +|sidColumn|String|Name of the detection query column that maps to the security identifier (SID) of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.securityGroupEntityMapping", + "distinguishedNameColumn": "String", + "objectIdColumn": "String", + "sidColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-softdeleteresponseaction.md b/api-reference/beta/resources/security-softdeleteresponseaction.md index 143333dae6d..bf316d07123 100644 --- a/api-reference/beta/resources/security-softdeleteresponseaction.md +++ b/api-reference/beta/resources/security-softdeleteresponseaction.md @@ -1,5 +1,5 @@ --- -title: "softDeleteResponseAction resource type" +title: "softDeleteResponseAction resource type (deprecated)" description: "Describes the soft delete response action, which moves the email message to a Deleted folder in the cloud but doesn't delete the email message permanently." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# softDeleteResponseAction resource type +# softDeleteResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **softDeleteResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes the soft delete response action, which moves the email message to a Deleted folder in the cloud but doesn't delete the email message permanently. Only administrators can perform this response action. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-stopandquarantinefileaction.md b/api-reference/beta/resources/security-stopandquarantinefileaction.md new file mode 100644 index 00000000000..1554c191d36 --- /dev/null +++ b/api-reference/beta/resources/security-stopandquarantinefileaction.md @@ -0,0 +1,48 @@ +--- +title: "stopAndQuarantineFileAction resource type" +description: "Represents an automated action that stops and quarantines a file on a device returned by a custom detection rule query." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# stopAndQuarantineFileAction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an [automatedAction](../resources/security-automatedaction.md) that stops and quarantines a file on a device returned by a [detectionRule](../resources/security-detectionrule.md) hunting query. The action uses device ID and SHA-1 columns from the query output to identify where to stop and quarantine the file. + +Inherits from [automatedAction](../resources/security-automatedaction.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|deviceIdColumn|String|Name of the hunting-query result column that contains the device ID for the device where the file was observed.| +|sha1Column|String|Name of the hunting-query result column that contains the SHA-1 hash of the file to stop and quarantine.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.stopAndQuarantineFileAction", + "deviceIdColumn": "String", + "sha1Column": "String" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-stopandquarantinefileresponseaction.md b/api-reference/beta/resources/security-stopandquarantinefileresponseaction.md index cd6f8e1e199..468dffa4ca1 100644 --- a/api-reference/beta/resources/security-stopandquarantinefileresponseaction.md +++ b/api-reference/beta/resources/security-stopandquarantinefileresponseaction.md @@ -1,5 +1,5 @@ --- -title: "stopAndQuarantineFileResponseAction resource type" +title: "stopAndQuarantineFileResponseAction resource type (deprecated)" description: "Describes response action that moves the file from its current location to quarantine." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# stopAndQuarantineFileResponseAction resource type +# stopAndQuarantineFileResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **stopAndQuarantineFileResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes response action that moves the file from its current location to quarantine. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-urlentitymapping.md b/api-reference/beta/resources/security-urlentitymapping.md new file mode 100644 index 00000000000..017c4e12bdb --- /dev/null +++ b/api-reference/beta/resources/security-urlentitymapping.md @@ -0,0 +1,46 @@ +--- +title: "urlEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a URL entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# urlEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a URL entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|addressColumn|String|Name of the detection query column that maps to the URL address of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.urlEntityMapping", + "addressColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security.md b/api-reference/beta/resources/security.md index eba970f127e..dcfe88765c9 100644 --- a/api-reference/beta/resources/security.md +++ b/api-reference/beta/resources/security.md @@ -36,6 +36,7 @@ None. |incidentTasks|[microsoft.graph.security.incidentTask](security-incidenttask.md) collection|A collection of tasks associated with security incidents.| |incidents | [microsoft.graph.security.incident](security-incident.md) collection | A collection of incidents in Microsoft 365 Defender, each of which is a set of correlated alerts and associated metadata that reflects the story of an attack.| |partner| [microsoft.graph.partner.security.partnerSecurity](../resources/partner-security-partnersecurity.md) | A container that safeguards the Microsoft Azure resources of Microsoft Cloud Solution Provider (CSP) partners' customers, including alerts, scores, and all aspects of security. | +|rules|[microsoft.graph.security.rulesRoot](../resources/security-rulesroot.md)|Container for the security rules configured in Microsoft Defender XDR, including [custom detection rules](../resources/security-detectionrule.md).| |secureScores | [secureScore](securescore.md) collection | Measurements of tenants' security posture to help protect them from threats. | |securityCopilot | [securityCopilot](../resources/securitycopilot.md) collection | Represents the resources related to Microsoft Security Copilot. | |securityactions|[securityAction](../resources/securityaction.md) collection|Actions that respond to alerts to block malicious activities.| diff --git a/api-reference/beta/resources/taskhistoryitem.md b/api-reference/beta/resources/taskhistoryitem.md new file mode 100644 index 00000000000..e0fc45566e3 --- /dev/null +++ b/api-reference/beta/resources/taskhistoryitem.md @@ -0,0 +1,70 @@ +--- +title: "taskHistoryItem resource type" +description: "Represents a record of a change made to a task within a planner plan." +author: "praspati" +ms.date: 05/15/2026 +ms.localizationpriority: medium +ms.subservice: "planner" +doc_type: resourcePageType +--- + +# taskHistoryItem resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a record of a change made to a task within a [planner plan](../resources/plannerplan.md). Use this resource to track the history of task modifications, including creation, updates, deletions, and moves. + +Inherits from [plannerHistoryItem](../resources/plannerhistoryitem.md). + +## Methods + +For the list of supported methods, see [plannerHistoryItem](../resources/plannerhistoryitem.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|actor|[identitySet](../resources/identityset.md)|The identity of the user or application that performed the change. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| +|entityId|String|The ID of the task that was changed. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| +|entityType|historyEntityType|The type of entity that was changed. The possible values are: `task`, `unknownFutureValue`. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md). | +|eventType|historyEventType|The type of change event that occurred. The possible values are: `created`, `updated`, `deleted`, `undeleted`, `moved`, `unknownFutureValue`. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| +|id|String|The unique identifier for the history item. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| +|newData|[plannerTaskData](../resources/plannertaskdata.md)|A snapshot of the task state after the change. This property is `null` for deletion events.| +|occurredDateTime|DateTimeOffset|The date and time when the change occurred. The date and time information uses ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2021 is `2021-01-01T00:00:00Z`. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| +|oldData|[plannerTaskData](../resources/plannertaskdata.md)|A snapshot of the task state before the change. This property is `null` for creation and undeletion events.| +|planId|String|The ID of the plan that contains the task. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.taskHistoryItem", + "id": "String (identifier)", + "planId": "String", + "entityId": "String", + "entityType": "String", + "eventType": "String", + "occurredDateTime": "String (timestamp)", + "actor": { + "@odata.type": "microsoft.graph.identitySet" + }, + "oldData": { + "@odata.type": "microsoft.graph.plannerTaskData" + }, + "newData": { + "@odata.type": "microsoft.graph.plannerTaskData" + } +} +``` diff --git a/api-reference/beta/resources/virtualevent.md b/api-reference/beta/resources/virtualevent.md index 3d0ce97c7a5..c35517494b9 100644 --- a/api-reference/beta/resources/virtualevent.md +++ b/api-reference/beta/resources/virtualevent.md @@ -38,10 +38,19 @@ Inherits from [entity](../resources/entity.md). |endDateTime|[dateTimeTimeZone](../resources/datetimetimezone.md)|The end time of the virtual event. The **timeZone** property _can_ be set to any of the time zones currently supported by Windows. For details on how to get all available time zones using PowerShell, see [Get-TimeZone](/powershell/module/microsoft.powershell.management/get-timezone#example-3-get-all-available-time-zones).| |externalEventInformation|[virtualEventExternalInformation](../resources/virtualeventexternalinformation.md) collection|The external information of a virtual event. Returned only for event organizers or coorganizers; otherwise, `null`. | |id|String|The unique identifier of the virtual event. Inherited from [entity](../resources/entity.md).| +|isRegistrationRequired|Boolean| Indicates whether attendee registration is enabled for the virtual event.| |settings|[virtualEventSettings](../resources/virtualeventsettings.md)| The virtual event settings. | |startDateTime|[dateTimeTimeZone](../resources/datetimetimezone.md)|Start time of the virtual event. The **timeZone** property _can_ be set to any of the time zones currently supported by Windows. For details on how to get all available time zones using PowerShell, see [Get-TimeZone](/powershell/module/microsoft.powershell.management/get-timezone#example-3-get-all-available-time-zones).| |status|[virtualEventStatus](#virtualeventstatus-values)|The status of the virtual event. The possible values are: `draft`, `published`, `canceled`, `unknownFutureValue`.| +> [!NOTE] +> Note: The `isRegistrationRequired` property controls whether the virtual event uses the registration workflow. +>When `isRegistrationRequired` is set to false, registration-related APIs can still be invoked. However, these calls do not trigger the full registration experience. Instead, they behave as an add-to-calendar action, allowing attendees to add the event to their calendar without completing a registration process. +>For webinars, registration is enabled by default (`isRegistrationRequired` = true). +>For town halls, registration is not enabled by default. If registration is required for a town hall, the organizer must explicitly set `isRegistrationRequired` to true when configuring the virtual event. + +This ensures that registration-related APIs invoke the full registration workflow and attendee registration experience. + ### virtualEventStatus values | Value | Description | @@ -79,6 +88,7 @@ The following JSON representation shows the resource type. "endDateTime": {"@odata.type": "microsoft.graph.dateTimeTimeZone"}, "externalEventInformation" : [{"@odata.type": "microsoft.graph.virtualEventExternalInformation"}], "id": "String (identifier)", + "isRegistrationRequired": "Boolean", "settings": {"@odata.type": "microsoft.graph.virtualEventSettings"}, "startDateTime": {"@odata.type": "microsoft.graph.dateTimeTimeZone"}, "status": "String" diff --git a/api-reference/beta/resources/virtualeventsession.md b/api-reference/beta/resources/virtualeventsession.md index 44775be6c7b..8af44efcb77 100644 --- a/api-reference/beta/resources/virtualeventsession.md +++ b/api-reference/beta/resources/virtualeventsession.md @@ -5,7 +5,7 @@ author: "frankpeng7" ms.localizationpriority: medium ms.subservice: "cloud-communications" doc_type: resourcePageType -ms.date: 11/08/2024 +ms.date: 06/04/2026 --- # virtualEventSession resource type @@ -48,6 +48,7 @@ Inherits from [onlineMeetingBase](../resources/onlinemeetingbase.md). | capacity | Integer | Represents the expected number of attendees for town hall session. | | chatInfo | [chatInfo](chatinfo.md) | The chat information associated with the virtual event session. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | chatRestrictions | [chatRestrictions](../resources/chatrestrictions.md) | Specifies the configuration settings for meeting chat restrictions. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | +| cloudVideoInteropInfo | [cloudVideoInteropInfo](cloudvideointeropinfo.md) | Conferencing device integration settings for [Cloud Video Interop (CVI)](/microsoftteams/cloud-video-interop). Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | endDateTime | [dateTimeTimeZone](../resources/datetimetimezone.md) | The virtual event session end time. | | expiryDateTime | DateTimeOffset | Indicates the date and time when the meeting resource expires. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | id | String | The unique identifier of the virtual event session. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | @@ -59,7 +60,9 @@ Inherits from [onlineMeetingBase](../resources/onlinemeetingbase.md). | lobbyBypassSettings | [lobbyBypassSettings](lobbyBypassSettings.md) | Specifies which participants can bypass the meeting lobby. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | meetingOptionsWebUrl | String | Provides the URL to the Teams meeting options page for the specified meeting. This link allows *only the organizer* to configure meeting settings. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | meetingSpokenLanguageTag | String | Specifies the spoken language used during the meeting for recording and transcription purposes. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | +| meetingType | [onlineMeetingType](../resources/onlinemeetingbase.md#onlinemeetingtype-values) | The type of the online meeting. The possible values are: `adhoc`, `scheduled`, `recurring`, `broadcast`, `meetnow`, `unknownFutureValue`. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | recordAutomatically | Boolean | Indicates whether to record the virtual event session automatically. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | +| sensitivityLabelAssignment | [onlineMeetingSensitivityLabelAssignment](../resources/onlinemeetingsensitivitylabelassignment.md) | Specifies the sensitivity label applied to the Teams meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | shareMeetingChatHistoryDefault | [meetingChatHistoryDefaultMode](#meetingchathistorydefaultmode-values) | Specifies whether meeting chat history is shared with participants. The possible values are: `all`, `none`, `unknownFutureValue`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | startDateTime | [DateTimeTimeZone](../resources/datetimetimezone.md) | The virtual event session start time. | | subject | String | The subject of the virtual event session. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | @@ -141,6 +144,7 @@ The following JSON representation shows the resource type. "capacity": "Integer", "chatInfo": {"@odata.type": "microsoft.graph.chatInfo"}, "chatRestrictions":{"@odata.type": "microsoft.graph.chatRestrictions"}, + "cloudVideoInteropInfo": {"@odata.type": "microsoft.graph.cloudVideoInteropInfo"}, "endDateTime": {"@odata.type": "microsoft.graph.dateTimeTimeZone"}, "expiryDateTime": "String (timestamp)", "id": "String (identifier)", @@ -152,7 +156,9 @@ The following JSON representation shows the resource type. "lobbyBypassSettings": {"@odata.type": "microsoft.graph.lobbyBypassSettings"}, "meetingOptionsWebUrl": "String", "meetingSpokenLanguageTag": "String", + "meetingType": "String", "recordAutomatically": "Boolean", + "sensitivityLabelAssignment": {"@odata.type": "microsoft.graph.onlineMeetingSensitivityLabelAssignment"}, "shareMeetingChatHistoryDefault": "String", "startDateTime": {"@odata.type": "microsoft.graph.dateTimeTimeZone"}, "subject": "String", diff --git a/api-reference/beta/resources/virtualeventtownhall.md b/api-reference/beta/resources/virtualeventtownhall.md index 177a7b76275..b913188c2b3 100644 --- a/api-reference/beta/resources/virtualeventtownhall.md +++ b/api-reference/beta/resources/virtualeventtownhall.md @@ -47,6 +47,7 @@ Inherits from [virtualEvent](../resources/virtualevent.md). | id | String | Unique identifier of the town hall. Inherited from [virtualEvent](../resources/virtualevent.md). Read-only. | | invitedAttendees | [identity](../resources/identity.md) collection | The attendees invited to the town hall. The supported identities are: [communicationsUserIdentity](../resources/communicationsuseridentity.md) and [communicationsGuestIdentity](../resources/communicationsguestidentity.md). | | isInviteOnly | Boolean | Indicates whether the town hall is only open to invited people and groups within your organization. The **isInviteOnly** property can only be `true` if the value of the **audience** property is set to `organization`. | +| isRegistrationRequired |Boolean| Indicates whether attendee registration is enabled for the town hall. Inherited from [virtualEvent](../resources/virtualevent.md).| | settings | [virtualEventSettings](../resources/virtualeventsettings.md) | The town hall settings. Inherited from [virtualEvent](../resources/virtualevent.md). | | startDateTime | [dateTimeTimeZone](../resources/datetimetimezone.md) | Date and time when the town hall starts. The **timeZone** property _can_ be set to any of the time zones currently supported by Windows. For details on how to get all available time zones using PowerShell, see [Get-TimeZone](/powershell/module/microsoft.powershell.management/get-timezone#example-3-get-all-available-time-zones). Inherited from [virtualEvent](../resources/virtualevent.md). | | status | [virtualEventStatus](#virtualeventstatus-values) | Status of the town hall. The possible values are: `draft`, `published`, `canceled`, `unknownFutureValue`. Inherited from [virtualEvent](../resources/virtualevent.md). | @@ -93,6 +94,11 @@ The following JSON representation shows the resource type. { "@odata.type": "#microsoft.graph.virtualEventTownhall", "id": "String (identifier)", + "invitedAttendees": [{"@odata.type": "microsoft.graph.identity"}], + "isInviteOnly": "Boolean", + "isRegistrationRequired": "Boolean", + "settings": {"@odata.type": "microsoft.graph.virtualEventSettings"}, + "startDateTime": {"@odata.type": "microsoft.graph.dateTimeTimeZone"}, "status": "String", "displayName": "String", "description": { @@ -128,4 +134,4 @@ The following JSON representation shows the resource type. ], "isInviteOnly": "Boolean" } -``` \ No newline at end of file +``` diff --git a/api-reference/beta/resources/virtualeventwebinar.md b/api-reference/beta/resources/virtualeventwebinar.md index 4388b252238..672f81c7fac 100644 --- a/api-reference/beta/resources/virtualeventwebinar.md +++ b/api-reference/beta/resources/virtualeventwebinar.md @@ -44,6 +44,7 @@ Inherits from [virtualEvent](../resources/virtualevent.md). | endDateTime | [dateTimeTimeZone](../resources/datetimetimezone.md) | End time of the webinar. The **timeZone** property _can_ be set to any of the time zones currently supported by Windows. For details on how to get all available time zones using PowerShell, see [Get-TimeZone](/powershell/module/microsoft.powershell.management/get-timezone#example-3-get-all-available-time-zones). | | externalEventInformation | [virtualEventExternalInformation](../resources/virtualeventexternalinformation.md) collection | The external information of a webinar. Returned only for event organizers or coorganizers; otherwise, `null`. | | id | String | Unique identifier of the webinar. Inherited from [virtualEvent](../resources/virtualevent.md).| +| isRegistrationRequired | Boolean | Indicates whether attendee registration is enabled for the webinar. Inherited from [virtualEvent](../resources/virtualevent.md). | | settings | [virtualEventSettings](../resources/virtualeventsettings.md) | The webinar settings. Inherited from [virtualEvent](../resources/virtualevent.md). | | startDateTime | [dateTimeTimeZone](../resources/datetimetimezone.md) | Start time of the webinar. The **timeZone** property _can_ be set to any of the time zones currently supported by Windows. For details on how to get all available time zones using PowerShell, see [Get-TimeZone](/powershell/module/microsoft.powershell.management/get-timezone#example-3-get-all-available-time-zones). | | status | [virtualEventStatus](#virtualeventstatus-values) | Status of the webinar. | @@ -95,6 +96,7 @@ The following JSON representation shows the resource type. "endDateTime": {"@odata.type": "microsoft.graph.dateTimeTimeZone"}, "externalEventInformation" : [{"@odata.type": "microsoft.graph.virtualEventExternalInformation"}], "id": "String (identifier)", + "isRegistrationRequired": "Boolean", "settings": {"@odata.type": "microsoft.graph.virtualEventSettings"}, "startDateTime": {"@odata.type": "microsoft.graph.dateTimeTimeZone"}, "status": "String" diff --git a/api-reference/beta/toc/security/toc.yml b/api-reference/beta/toc/security/toc.yml index 58ff6b23691..e3bdfacb7b0 100644 --- a/api-reference/beta/toc/security/toc.yml +++ b/api-reference/beta/toc/security/toc.yml @@ -290,6 +290,112 @@ items: items: - name: Audit info href: ../../resources/security-auditinfo.md +- name: Custom detection rules + items: + - name: Rules root + items: + - name: Rules root + href: ../../resources/security-rulesroot.md + - name: List + href: ../../api/security-rulesroot-list-detectionrules.md + - name: Create + href: ../../api/security-rulesroot-post-detectionrules.md + - name: Get + href: ../../api/security-detectionrule-get.md + - name: Update + href: ../../api/security-detectionrule-update.md + - name: Delete + href: ../../api/security-rulesroot-delete-detectionrules.md + - name: Detection rule + items: + - name: Detection rule + href: ../../resources/security-detectionrule.md + - name: List + href: ../../api/security-rulesroot-list-detectionrules.md + - name: Create + href: ../../api/security-rulesroot-post-detectionrules.md + - name: Get + href: ../../api/security-detectionrule-get.md + - name: Update + href: ../../api/security-detectionrule-update.md + - name: Delete + href: ../../api/security-rulesroot-delete-detectionrules.md + - name: Complex types + items: + - name: Account entity mapping + href: ../../resources/security-accountentitymapping.md + - name: Account object id action + href: ../../resources/security-accountobjectidaction.md + - name: Account sid action + href: ../../resources/security-accountsidaction.md + - name: Alert custom details + href: ../../resources/security-alertcustomdetails.md + - name: Alert template + href: ../../resources/security-alerttemplate.md + - name: Amazon resource entity mapping + href: ../../resources/security-amazonresourceentitymapping.md + - name: Automated action + href: ../../resources/security-automatedaction.md + - name: Automated action set + href: ../../resources/security-automatedactionset.md + - name: Azure resource entity mapping + href: ../../resources/security-azureresourceentitymapping.md + - name: Cloud application entity mapping + href: ../../resources/security-cloudapplicationentitymapping.md + - name: Detection action + href: ../../resources/security-detectionaction.md + - name: Device action + href: ../../resources/security-deviceaction.md + - name: DNS entity mapping + href: ../../resources/security-dnsentitymapping.md + - name: Email action + href: ../../resources/security-emailaction.md + - name: Entity mapping + href: ../../resources/security-entitymapping.md + - name: Entity mapping configuration + href: ../../resources/security-entitymappingconfiguration.md + - name: File action + href: ../../resources/security-fileaction.md + - name: File entity mapping + href: ../../resources/security-fileentitymapping.md + - name: Google cloud resource entity mapping + href: ../../resources/security-googlecloudresourceentitymapping.md + - name: Host entity mapping + href: ../../resources/security-hostentitymapping.md + - name: Impacted asset + href: ../../resources/security-impactedasset.md + - name: IP entity mapping + href: ../../resources/security-ipentitymapping.md + - name: Isolate device action + href: ../../resources/security-isolatedeviceaction.md + - name: Mail cluster entity mapping + href: ../../resources/security-mailclusterentitymapping.md + - name: Mail message entity mapping + href: ../../resources/security-mailmessageentitymapping.md + - name: Mailbox entity mapping + href: ../../resources/security-mailboxentitymapping.md + - name: Mitre tactic + href: ../../resources/security-mitretactic.md + - name: Mitre technique + href: ../../resources/security-mitretechnique.md + - name: OAuth application entity mapping + href: ../../resources/security-oauthapplicationentitymapping.md + - name: Process entity mapping + href: ../../resources/security-processentitymapping.md + - name: Query condition + href: ../../resources/security-querycondition.md + - name: Registry value entity mapping + href: ../../resources/security-registryvalueentitymapping.md + - name: Response action + href: ../../resources/security-responseaction.md + - name: Rule schedule + href: ../../resources/security-ruleschedule.md + - name: Security group entity mapping + href: ../../resources/security-securitygroupentitymapping.md + - name: Stop and quarantine file action + href: ../../resources/security-stopandquarantinefileaction.md + - name: URL entity mapping + href: ../../resources/security-urlentitymapping.md - name: Data security and compliance items: - name: Content activity @@ -432,20 +538,6 @@ items: href: ../../resources/textcontent.md - name: User scope href: ../../resources/userscope.md -- name: Detection rule - items: - - name: Detection rule - href: ../../resources/security-detectionrule.md - - name: List - href: ../../api/security-detectionrule-list.md - - name: Get - href: ../../api/security-detectionrule-get.md - - name: Create - href: ../../api/security-detectionrule-post-detectionrules.md - - name: Update - href: ../../api/security-detectionrule-update.md - - name: Delete - href: ../../api/security-detectionrule-delete.md - name: Discovered cloud apps (preview) items: - name: Overview diff --git a/api-reference/beta/toc/tasks-and-plans/toc.yml b/api-reference/beta/toc/tasks-and-plans/toc.yml index 100c969e97a..73b4c72c4e2 100644 --- a/api-reference/beta/toc/tasks-and-plans/toc.yml +++ b/api-reference/beta/toc/tasks-and-plans/toc.yml @@ -30,6 +30,8 @@ items: href: ../../api/plannerplan-delta.md - name: Get usage rights href: ../../api/plannerplan-getusagerights.md + - name: List history items + href: ../../api/plannerplan-list-historyitems.md - name: Planner task items: - name: Planner task @@ -64,6 +66,14 @@ items: href: ../../api/plannerbucket-delete.md - name: Get delta href: ../../api/plannerbucket-delta.md +- name: Planner history item + items: + - name: Planner history item + href: ../../resources/plannerhistoryitem.md + - name: List + href: ../../api/plannerplan-list-historyitems.md + - name: Task history item + href: ../../resources/taskhistoryitem.md - name: Planner plan details items: - name: Planner plan details @@ -334,6 +344,10 @@ items: href: ../../resources/plannertaskcompletionrequirementdetails.md - name: Planner task creation href: ../../resources/plannertaskcreation.md + - name: Planner task data + href: ../../resources/plannertaskdata.md + - name: Planner task details data + href: ../../resources/plannertaskdetailsdata.md - name: Planner task property rule href: ../../resources/plannertaskpropertyrule.md - name: Planner task recurrence diff --git a/api-reference/beta/toc/tenants/toc.yml b/api-reference/beta/toc/tenants/toc.yml index aad4c8a22a4..9d028d58272 100644 --- a/api-reference/beta/toc/tenants/toc.yml +++ b/api-reference/beta/toc/tenants/toc.yml @@ -186,6 +186,8 @@ items: href: ../../api/migrationsroot-delete-crosstenantmigrationjobs.md - name: cancel href: ../../api/crosstenantmigrationjob-cancel.md + - name: migrate + href: ../../api/crosstenantmigrationjob-migrate.md - name: validate href: ../../api/crosstenantmigrationjob-validate.md - name: List users diff --git a/api-reference/beta/toc/toc.mapping.json b/api-reference/beta/toc/toc.mapping.json index f64b05cff2e..6aa64610749 100644 --- a/api-reference/beta/toc/toc.mapping.json +++ b/api-reference/beta/toc/toc.mapping.json @@ -2897,8 +2897,7 @@ "securityAction", "secureScore", "secureScoreControlProfile", - "tiIndicator", - "microsoft.graph.security.detectionRule" + "tiIndicator" ], "childNodes": [ { @@ -2982,6 +2981,51 @@ "microsoft.graph.security.auditInfo" ] }, + { + "name": "Custom detection rules", + "resources": [ + "microsoft.graph.security.detectionRule" + ], + "complexTypes": [ + "microsoft.graph.security.detectionAction", + "microsoft.graph.security.alertTemplate", + "microsoft.graph.security.alertCustomDetails", + "microsoft.graph.security.ruleSchedule", + "microsoft.graph.security.queryCondition", + "microsoft.graph.security.mitreTactic", + "microsoft.graph.security.mitreTechnique", + "microsoft.graph.security.entityMappingConfiguration", + "microsoft.graph.security.entityMapping", + "microsoft.graph.security.accountEntityMapping", + "microsoft.graph.security.amazonResourceEntityMapping", + "microsoft.graph.security.azureResourceEntityMapping", + "microsoft.graph.security.cloudApplicationEntityMapping", + "microsoft.graph.security.dnsEntityMapping", + "microsoft.graph.security.fileEntityMapping", + "microsoft.graph.security.googleCloudResourceEntityMapping", + "microsoft.graph.security.hostEntityMapping", + "microsoft.graph.security.ipEntityMapping", + "microsoft.graph.security.mailboxEntityMapping", + "microsoft.graph.security.mailClusterEntityMapping", + "microsoft.graph.security.mailMessageEntityMapping", + "microsoft.graph.security.oauthApplicationEntityMapping", + "microsoft.graph.security.processEntityMapping", + "microsoft.graph.security.registryValueEntityMapping", + "microsoft.graph.security.securityGroupEntityMapping", + "microsoft.graph.security.urlEntityMapping", + "microsoft.graph.security.automatedActionSet", + "microsoft.graph.security.automatedAction", + "microsoft.graph.security.accountObjectIdAction", + "microsoft.graph.security.accountSidAction", + "microsoft.graph.security.deviceAction", + "microsoft.graph.security.isolateDeviceAction", + "microsoft.graph.security.emailAction", + "microsoft.graph.security.fileAction", + "microsoft.graph.security.stopAndQuarantineFileAction", + "microsoft.graph.security.responseAction", + "microsoft.graph.security.impactedAsset" + ] + }, { "name": "Data security and compliance", "resources": [ @@ -3316,6 +3360,7 @@ "plannerPlan", "plannerTask", "plannerBucket", + "plannerHistoryItem", "plannerPlanDetails", "plannerRoster", "plannerUser", @@ -3368,6 +3413,8 @@ "plannerTaskChatReaction", "plannerTaskChatReactionEvent", "plannerTaskCreation", + "plannerTaskData", + "plannerTaskDetailsData", "plannerTaskPropertyRule", "plannerTaskRecurrence", "plannerTeamsPublicationInfo", @@ -3398,6 +3445,12 @@ } ] }, + { + "name": "Planner history item", + "resources": [ + "taskHistoryItem" + ] + }, { "name": "Task formats", "resources": [ @@ -3560,10 +3613,11 @@ "complexTypes": [ "actionItem", "aiOnlineMeeting", + "cloudVideoInteropInfo", + "identitySet", "meetingNote", "meetingNoteSubpoint", - "mentionEvent", - "identitySet" + "mentionEvent" ] }, { diff --git a/api-reference/v1.0/api/accesspackage-getapplicablepolicyrequirements.md b/api-reference/v1.0/api/accesspackage-getapplicablepolicyrequirements.md index 684827d93f9..acde5b68dba 100644 --- a/api-reference/v1.0/api/accesspackage-getapplicablepolicyrequirements.md +++ b/api-reference/v1.0/api/accesspackage-getapplicablepolicyrequirements.md @@ -104,7 +104,33 @@ Content-Type: application/json { "value": [ { - "@odata.type": "microsoft.graph.accessPackageAssignmentRequestRequirements" + "policyId": "d6322c23-04d6-eb11-b22b-c8d9d21f4e9a", + "policyDisplayName": "Initial Policy", + "policyDescription": "Initial Policy", + "isApprovalRequiredForAdd": false, + "isApprovalRequiredForUpdate": false, + "isRequestorJustificationRequired": false, + "allowCustomAssignmentSchedule": true, + "schedule": { + "expiration": { + "endDateTime": null, + "duration": "P365D", + "type": "afterDuration" + } + }, + "questions": [ + { + "@odata.type": "#microsoft.graph.textInputQuestion", + "id": "0fd349e2-a3a7-4712-af08-660f29c12b90", + "isRequired": true, + "sequence": 0, + "isSingleLineQuestion": true, + "text": { + "defaultText": "What is your display name", + "localizedTexts": [] + } + } + ] } ] } diff --git a/api-reference/v1.0/api/accesspackage-post-resourcerolescopes.md b/api-reference/v1.0/api/accesspackage-post-resourcerolescopes.md index 3ea6676a0e2..0005ddec903 100644 --- a/api-reference/v1.0/api/accesspackage-post-resourcerolescopes.md +++ b/api-reference/v1.0/api/accesspackage-post-resourcerolescopes.md @@ -321,3 +321,202 @@ Content-type: application/json "createdDateTime": "2023-06-28T01:19:48.4216782Z" } ``` + +### Example 4: Add an Active Subscription scoped to a Resource Group Resource Role to an access package + +#### Request + +The following example shows a request to add an active Subscription scoped to a Resource Group Resource Role to an access package. + +Before this request, you must have already added the access package resource `b09a0288-a83e-4ae6-8a53-bc09aeb966ea` for the Subscription `828b526f-c769-4b19-9797-734b4843b978` to the access package catalog containing this access package. The resource could have been added to the catalog by [creating an access package resource request](entitlementmanagement-post-resourcerequests.md). + + + +```http +POST https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/accessPackages/5f7f4c7d-b3f5-4988-a17b-3f09b6f5a9ee/resourceRoleScopes +Content-type: application/json + +{ + "role": { + "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + "displayName": "Access Review Operator Service Role", + "description": "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + "resource": { + "id": "b09a0288-a83e-4ae6-8a53-bc09aeb966ea", + "description": "Dev", + "displayName": "Dev", + "resourceType": "Subscription", + "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + "originSystem": "AzureResources" + }, + "originSystem": "AzureResources", + "type": "active" + }, + "scope": { + "id": "e1e0ec8c-472d-4ec5-a8f9-29e0bc275640", + "description": "/resourceGroups/rg", + "displayName": "/resourceGroups/rg", + "isRootScope": false, + "originSystem": "AzureResources", + "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg" + } +} +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 201 Created +Content-type: application/json + +{ + "id": "34b2d7de-e8d6-4ba8-843e-a03546feac63_e1e0ec8c-472d-4ec5-a8f9-29e0bc275640", + "createdDateTime": "2026-02-09T22:31:55.3690356Z" +} +``` + +### Example 5: Add Eligible Management Group Resource Role to an access package + +#### Request + +The following example shows a request to add an eligible Management Group scoped to a Resource Role to an access package. + +Before this request, you must have already added the access package resource `c347ca9b-a9cc-4df9-bc3c-00c8e0297692` for the Management Group `test-mgmtgroup` to the access package catalog containing this access package. The resource could have been added to the catalog by [creating an access package resource request](entitlementmanagement-post-resourcerequests.md). + + + +```http +POST https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/accessPackages/5f7f4c7d-b3f5-4988-a17b-3f09b6f5a9ee/resourceRoleScopes +Content-type: application/json + +{ + "role": { + "id": "055c76c1-a466-4f1a-9279-4a2ccaa7ac3e", + "originId": "/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + "displayName": "Access Review Operator Service Role", + "description": "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + "resource": { + "id": "c347ca9b-a9cc-4df9-bc3c-00c8e0297692", + "description": "test-mgmtgroup", + "displayName": "test-mgmtgroup", + "resourceType": "ManagementGroup", + "originId": "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + "originSystem": "AzureResources" + }, + "originSystem": "AzureResources", + "type": "eligible" + }, + "scope": { + "id": "338613b3-b410-4c6d-b5e9-45590bc8a357", + "displayName": "Root", + "description": "Root Scope", + "isRootScope": true, + "originId": "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + "originSystem": "AzureResources" + } +} +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 201 Created +Content-type: application/json + +{ + "id": "055c76c1-a466-4f1a-9279-4a2ccaa7ac3e_338613b3-b410-4c6d-b5e9-45590bc8a357", + "createdDateTime": "2026-02-09T22:23:14.8561335Z" +} +``` + +### Example 6: Add Active Subscription Resource Role to access package + +#### Request + +The following example shows a request to Add Active Subscription Resource Role to an access package scoped to a Resource Role to an access package. + +Before this request, you must have already added the access package resource `b09a0288-a83e-4ae6-8a53-bc09aeb966ea` for the Subscription `828b526f-c769-4b19-9797-734b4843b978` to the access package catalog containing this access package. The resource could have been added to the catalog by [creating an access package resource request](entitlementmanagement-post-resourcerequests.md). + + + +```http +POST https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/accessPackages/5f7f4c7d-b3f5-4988-a17b-3f09b6f5a9ee/resourceRoleScopes +Content-type: application/json + +{ + "role": { + "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + "displayName": "Access Review Operator Service Role", + "description": "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + "resource": { + "id": "b09a0288-a83e-4ae6-8a53-bc09aeb966ea", + "description": "Dev", + "displayName": "Dev", + "resourceType": "Subscription", + "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + "originSystem": "AzureResources" + }, + "originSystem": "AzureResources", + "type": "active" + }, + "scope": { + "id": "c66c1e22-1093-46fb-a8a8-c0e334113ca4", + "description": "Root", + "displayName": "Root", + "isRootScope": true, + "originSystem": "AzureResources", + "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" + } +} +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 201 Created +Content-type: application/json + +{ + "id": "34b2d7de-e8d6-4ba8-843e-a03546feac63_c66c1e22-1093-46fb-a8a8-c0e334113ca4", + "createdDateTime": "2026-02-09T22:29:40.3420825Z" +} +``` diff --git a/api-reference/v1.0/api/accesspackageassignmentrequest-cancel.md b/api-reference/v1.0/api/accesspackageassignmentrequest-cancel.md index 58a7641ff27..24eee63c7c4 100644 --- a/api-reference/v1.0/api/accesspackageassignmentrequest-cancel.md +++ b/api-reference/v1.0/api/accesspackageassignmentrequest-cancel.md @@ -21,7 +21,7 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/accesspackageassignmentrequest-cancel-permissions.md)] -[!INCLUDE [rbac-entitlement-access-package-assignment-manager-write](../includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write.md)] +[!INCLUDE [rbac-entitlement-access-package-assignment-manager-write-including-subject-access](../includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write-including-subject-access.md)] ## HTTP request diff --git a/api-reference/v1.0/api/accesspackagesuggestions-filterbycurrentuser.md b/api-reference/v1.0/api/accesspackagesuggestions-filterbycurrentuser.md new file mode 100644 index 00000000000..c56fe95a2a0 --- /dev/null +++ b/api-reference/v1.0/api/accesspackagesuggestions-filterbycurrentuser.md @@ -0,0 +1,192 @@ +--- +title: "accessPackageSuggestions: filterByCurrentUser" +description: "Retrieve suggested access packages for the current end user based on various criteria including related people insights." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "apiPageType" +ms.date: 05/14/2026 +--- + +# accessPackageSuggestions: filterByCurrentUser + +Namespace: microsoft.graph + +Retrieve suggested [accessPackageSuggestion](../resources/accesspackagesuggestion.md) objects for the current end user. This operation returns access packages that are suggested based on various criteria such as related people insights and the user's assignment history. + +The suggestions help end users discover relevant access packages they may need for their role or work context. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md)] + +## HTTP request + + + +```http +GET /identityGovernance/entitlementManagement/accessPackageSuggestions/filterByCurrentUser(on='{on}') +``` + +## Function parameters + +In the request URL, provide the following query parameters with values. + +| Parameter | Type |Description| +|:-------------|:-------|:----------| +|on|accessPackageSuggestionFilterByCurrentUserOptions|Filter to determine which suggestions to return. This is a flags enum that allows multiple values to be specified. The possible values are: `none`, `relatedPeopleAssignments`, `assignmentHistory`, `unknownFutureValue`.| + +## Request headers + +| Name |Description| +|:----------|:----------| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [accessPackageSuggestion](../resources/accesspackagesuggestion.md) objects in the response body. + +## Examples + +### Example 1: Get all access package suggestions with default insight types + +#### Request + +The following example shows a request. + + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/accessPackageSuggestions/filterByCurrentUser(on='relatedPeopleAssignments,assignmentHistory')?$expand=accessPackage +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#identityGovernance/entitlementManagement/accessPackageSuggestions/filterByCurrentUser(on='relatedPeopleAssignments,assignmentHistory')", + "value": [ + { + "id": "51b4bd29-cb2d-ef11-8b5f-20c19bd3bce6", + "reasons": [ + { + "@odata.type": "#microsoft.graph.accessPackageSuggestionRelatedPeopleBased", + "relatedPeopleAssignmentCount": 2 + }, + { + "@odata.type": "#microsoft.graph.accessPackageSuggestionSelfAssignmentHistoryBased", + "pastAssignmentCount": 2, + "lastAssignmentDateTime": "2024-08-08T19:13:50.023Z" + } + ], + "accessPackage": { + "id": "51b4bd29-cb2d-ef11-8b5f-20c19bd3bce6", + "displayName": "Marketing Team Access", + "description": "Access package providing marketing team resources and permissions" + } + }, + { + "id": "fa6338d0-d12d-ef11-8b5f-20c19bd3bce6", + "reasons": [ + { + "@odata.type": "#microsoft.graph.accessPackageSuggestionRelatedPeopleBased", + "relatedPeopleAssignmentCount": 3 + } + ], + "accessPackage": { + "id": "fa6338d0-d12d-ef11-8b5f-20c19bd3bce6", + "displayName": "Engineering Team Access", + "description": "Access package for engineering resources" + } + } + ] +} +``` + +### Example 2: Get access package suggestions based on assignment history + +#### Request + +The following example shows a request. + + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/accessPackageSuggestions/filterByCurrentUser(on='assignmentHistory')?$expand=accessPackage +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#identityGovernance/entitlementManagement/accessPackageSuggestions/filterByCurrentUser(on='assignmentHistory')", + "value": [ + { + "id": "97ce41d0-fc5c-4e10-a979-1ad18e8242d7", + "reasons": [ + { + "@odata.type": "#microsoft.graph.accessPackageSuggestionSelfAssignmentHistoryBased", + "pastAssignmentCount": 3, + "lastAssignmentDateTime": "2024-11-28T01:28:15.313Z" + } + ], + "accessPackage": { + "id": "97ce41d0-fc5c-4e10-a979-1ad18e8242d7", + "displayName": "Sales Team Access", + "description": "Access package for sales team" + } + } + ] +} +``` + + diff --git a/api-reference/v1.0/api/availableaccesspackage-list-resourcerolescopes.md b/api-reference/v1.0/api/availableaccesspackage-list-resourcerolescopes.md new file mode 100644 index 00000000000..75a9893025f --- /dev/null +++ b/api-reference/v1.0/api/availableaccesspackage-list-resourcerolescopes.md @@ -0,0 +1,93 @@ +--- +title: "List resourceRoleScopes" +description: "Retrieve the resource role scopes for an available access package to provide resource details to end users." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "apiPageType" +ms.date: 05/14/2026 +--- + +# List resourceRoleScopes + +Namespace: microsoft.graph + +Get a list of the [accessPackageResourceRoleScope](../resources/accesspackageresourcerolescope.md) objects associated with an [availableAccessPackage](../resources/availableaccesspackage.md). + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md)] + +> [!NOTE] +> This API call follows Entitlement Management scope rules. It only returns resource role scopes that the signed‑in user is allowed to see or request. Being an admin doesn't override these checks—admins also need to be in scope for the access package to retrieve its resource role scopes. + +## HTTP request + + + +```http +GET /identityGovernance/entitlementManagement/availableAccessPackages/{availableAccessPackage-id}/resourceRoleScopes +``` + +## Optional query parameters + +This method supports the `$select`, `$expand`, `$filter`, and `$top` OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers + +| Name |Description| +|:----------|:----------| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [accessPackageResourceRoleScope](../resources/accesspackageresourcerolescope.md) objects in the response body. + +## Examples + +### Request + +The following example shows a request. + + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/availableAccessPackages/360fa7de-90be-48dc-a2ce-fc40094a93dd/resourceRoleScopes +``` + +### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#identityGovernance/entitlementManagement/availableAccessPackages('360fa7de-90be-48dc-a2ce-fc40094a93dd')/resourceRoleScopes", + "value": [ + { + "id": "c8f7be1e-3e35-4c80-b4f1-7c9ec23bbf77_9b5e1b3d-e4c2-4b8a-8f5b-2a3c9d4e5f6b", + "createdDateTime": "2024-01-15T09:30:00Z" + } + ] +} +``` diff --git a/api-reference/v1.0/api/endusersettings-get.md b/api-reference/v1.0/api/endusersettings-get.md new file mode 100644 index 00000000000..6a1ac366f54 --- /dev/null +++ b/api-reference/v1.0/api/endusersettings-get.md @@ -0,0 +1,88 @@ +--- +title: "Get end user settings" +description: "Read the properties and relationships of the end user settings in Entitlement Management." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "apiPageType" +ms.date: 05/14/2026 +--- + +# Get endUserSettings + +Namespace: microsoft.graph + +Read the properties and relationships of an [endUserSettings](../resources/endusersettings.md) object that controls the end user experience for access package suggestions and resource discovery. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/endusersettings-get-permissions.md)] + +[!INCLUDE [rbac-entitlement-identity-governance-read](../includes/rbac-for-apis/rbac-entitlement-identity-governance-admin-apis-read.md)] + +## HTTP request + + + +```http +GET /identityGovernance/entitlementManagement/controlConfigurations/endUserSettings +``` + +## Optional query parameters + +Not supported. + +## Request headers + +| Name |Description| +|:----------|:----------| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and an [endUserSettings](../resources/endusersettings.md) object in the response body. + +## Examples + +### Request + +The following example shows a request. + + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/controlConfigurations/endUserSettings +``` + +### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#identityGovernance/entitlementManagement/controlConfigurations/endUserSettings", + "relatedPeopleInsightLevel": "countAndNames", + "showApproverDetailsToMembers": true +} +``` diff --git a/api-reference/v1.0/api/endusersettings-update.md b/api-reference/v1.0/api/endusersettings-update.md new file mode 100644 index 00000000000..5edf9d13f95 --- /dev/null +++ b/api-reference/v1.0/api/endusersettings-update.md @@ -0,0 +1,99 @@ +--- +title: "Update end user settings" +description: "Update the properties of an endUserSettings object." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "apiPageType" +ms.date: 05/14/2026 +--- + +# Update endUserSettings + +Namespace: microsoft.graph + +Update the properties of an [endUserSettings](../resources/endusersettings.md) object that controls the end user experience for access package suggestions and resource discovery. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/endusersettings-update-permissions.md)] + +[!INCLUDE [rbac-entitlement-identity-governance-write](../includes/rbac-for-apis/rbac-entitlement-identity-governance-admin-apis-write.md)] + +## HTTP request + + + +```http +PUT /identityGovernance/entitlementManagement/controlConfigurations/endUserSettings +``` + +## Request headers + +| Name | Description| +|:-----------|:-----------| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| + +## Request body + +In the request body, supply a JSON representation of the [endUserSettings](../resources/endusersettings.md) object. + +The following table shows the properties that are required when you update the [endUserSettings](../resources/endusersettings.md). + +|Property|Type|Description| +|:---|:---|:---| +|relatedPeopleInsightLevel|accessPackageSuggestionRelatedPeopleInsightLevel|The level of related people insights to show in access package suggestions. The possible values are: `disabled`, `count`, `countAndNames`, `unknownFutureValue`.| +|showApproverDetailsToMembers|Boolean|Indicates whether approver details are shown to members. When `true`, approver information is visible to members.| + +## Response + +If successful, this method returns a `200 OK` response code and an updated [endUserSettings](../resources/endusersettings.md) object in the response body. + +## Examples + +### Request + +The following example shows a request. + + + +```http +PUT https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/controlConfigurations/endUserSettings +Content-type: application/json + +{ + "@odata.type": "#microsoft.graph.endUserSettings", + "relatedPeopleInsightLevel": "countAndNames", + "showApproverDetailsToMembers": true +} +``` + +### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#identityGovernance/entitlementManagement/controlConfigurations/endUserSettings", + "relatedPeopleInsightLevel": "countAndNames", + "showApproverDetailsToMembers": true +} +``` diff --git a/api-reference/v1.0/api/entitlementmanagement-post-assignmentrequests.md b/api-reference/v1.0/api/entitlementmanagement-post-assignmentrequests.md index ef5da5747be..a94034cfd1f 100644 --- a/api-reference/v1.0/api/entitlementmanagement-post-assignmentrequests.md +++ b/api-reference/v1.0/api/entitlementmanagement-post-assignmentrequests.md @@ -22,7 +22,7 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md)] -[!INCLUDE [rbac-entitlement-end-user-apis-write](../includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write.md)] +[!INCLUDE [rbac-entitlement-end-user-apis-write-including-subject-access](../includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md)] ## HTTP request diff --git a/api-reference/v1.0/api/entitlementmanagement-post-resourcerequests.md b/api-reference/v1.0/api/entitlementmanagement-post-resourcerequests.md index 1f8fe56e415..4e67d8da1f2 100644 --- a/api-reference/v1.0/api/entitlementmanagement-post-resourcerequests.md +++ b/api-reference/v1.0/api/entitlementmanagement-post-resourcerequests.md @@ -522,3 +522,107 @@ Content-type: application/json "state": "delivered" } ``` + +### Example 6: Add a Management Group Resource to catalog + +#### Request + +The following example shows a request for adding a management group resource to a catalog. + + +```http +POST https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/resourceRequests +Content-type: application/json + +{ + "requestType": "adminAdd", + "resource": { + "displayName": "test-mgmtgroup", + "description": "test-mgmtgroup", + "resourceType": "ManagementGroup", + "originId": "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + "originSystem": "AzureResources" + }, + "catalog": { + "id": "e8368470-afaf-44da-ba86-13a7318f1995" + } +} +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 201 Created +Content-type: application/json + +{ + "id": "99e156fe-d152-4005-b019-6ba816f411ea", + "requestType": "adminAdd", + "state": "delivered" +} +``` + +### Example 7: Add a Subscription Resource to catalog + +#### Request + +The following example shows a request for adding a Subscription resource to a catalog. + + +```http +POST https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/resourceRequests +Content-type: application/json + +{ + "requestType": "adminAdd", + "resource": { + "displayName": "Dev", + "description": "Dev", + "resourceType": "Subscription", + "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + "originSystem": "AzureResources" + }, + "catalog": { + "id": "e8368470-afaf-44da-ba86-13a7318f1995" + } +} +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 201 Created +Content-type: application/json + +{ + "id": "13ac6518-0597-452c-98ff-59c52b391dae", + "requestType": "adminAdd", + "state": "delivered" +} +``` diff --git a/api-reference/v1.0/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md b/api-reference/v1.0/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md new file mode 100644 index 00000000000..dcc22a68490 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md @@ -0,0 +1,11 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| diff --git a/api-reference/v1.0/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md b/api-reference/v1.0/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md new file mode 100644 index 00000000000..dcc22a68490 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md @@ -0,0 +1,11 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| diff --git a/api-reference/v1.0/includes/permissions/endusersettings-get-permissions.md b/api-reference/v1.0/includes/permissions/endusersettings-get-permissions.md new file mode 100644 index 00000000000..dcc22a68490 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/endusersettings-get-permissions.md @@ -0,0 +1,11 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| diff --git a/api-reference/v1.0/includes/permissions/endusersettings-update-permissions.md b/api-reference/v1.0/includes/permissions/endusersettings-update-permissions.md new file mode 100644 index 00000000000..142aea0a481 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/endusersettings-update-permissions.md @@ -0,0 +1,11 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|EntitlementManagement.ReadWrite.All|Not available.| diff --git a/api-reference/v1.0/includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write-including-subject-access.md b/api-reference/v1.0/includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write-including-subject-access.md new file mode 100644 index 00000000000..99008d8f030 --- /dev/null +++ b/api-reference/v1.0/includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write-including-subject-access.md @@ -0,0 +1,29 @@ +--- +author: simranm +ms.topic: include +--- + + + +> [!TIP] +> The role and permission required for delegated access using work or school accounts depend on whose request is being canceled. +> +> **End users canceling their own request:** +> - The signed-in user **doesn't need** an administrator role. +> - The least privileged permission is `EntitlementMgmt-SubjectAccess.ReadWrite`. +> +> **Administrators canceling requests submitted by others:** +> - The least privileged permission is `EntitlementManagement.ReadWrite.All`. +> - The signed-in user **must** be assigned a supported administrator role. Supported roles, from least to most privileged: +> - A [role in the Entitlement Management system](/entra/id-governance/entitlement-management-delegate): +> - *Access package assignment manager*. **This is the least privileged option** +> - *Access package manager* +> - *Catalog owner* +> - A more privileged [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json): +> - *Identity Governance Administrator* +> +> In app-only scenarios, the calling app can be assigned one of the preceding supported roles instead of the `EntitlementManagement.ReadWrite.All` application permission. The *Access package assignment manager* role is less privileged than the `EntitlementManagement.ReadWrite.All` application permission. +> +> For more information, see [Delegation and roles in entitlement management](/entra/id-governance/entitlement-management-delegate) and [how to delegate access governance to access package managers in entitlement management](/entra/id-governance/entitlement-management-delegate-managers). diff --git a/api-reference/v1.0/includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md b/api-reference/v1.0/includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md new file mode 100644 index 00000000000..c31c0882803 --- /dev/null +++ b/api-reference/v1.0/includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md @@ -0,0 +1,30 @@ +--- +author: simranm +ms.topic: include +--- + + + +> [!TIP] +> The role and permission required for delegated access using work or school accounts depend on the `requestType` of the request being submitted. +> +> **End-user requests** — `userAdd`, `userUpdate`, `userRemove`, and `approverRemove`: +> - The signed-in user **doesn't need** an administrator role. +> - The least privileged permission is `EntitlementMgmt-SubjectAccess.ReadWrite`. +> - Holding the permission isn't sufficient on its own — whether an end-user can submit a request is also governed by the corresponding accessPackageAssignmentPolicy, which controls who can be assigned to an access package and who can request it (`allowedTargetScope`, `specificAllowedTargets`, and `requestorSettings`). +> +> **Administrator requests** — `adminAdd`, `adminUpdate`, and `adminRemove`: +> - The least privileged permission is `EntitlementManagement.ReadWrite.All`. +> - The signed-in user **must** be assigned a supported administrator role. Supported roles, from least to most privileged: +> - A [role in the Entitlement Management system](/entra/id-governance/entitlement-management-delegate): +> - *Access package assignment manager*. **This is the least privileged option** +> - *Access package manager* +> - *Catalog owner* +> - A more privileged [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json): +> - *Identity Governance Administrator* +> +> In app-only scenarios, the calling app can be assigned one of the preceding supported roles instead of the `EntitlementManagement.ReadWrite.All` application permission. The *Access package assignment manager* role is less privileged than the `EntitlementManagement.ReadWrite.All` application permission. +> +> For more information, see [Delegation and roles in entitlement management](/entra/id-governance/entitlement-management-delegate) and [how to delegate access governance to access package managers in entitlement management](/entra/id-governance/entitlement-management-delegate-managers). diff --git a/api-reference/v1.0/resources/accesspackageapprovalstage.md b/api-reference/v1.0/resources/accesspackageapprovalstage.md index 18a83701896..7668ba5dc8d 100644 --- a/api-reference/v1.0/resources/accesspackageapprovalstage.md +++ b/api-reference/v1.0/resources/accesspackageapprovalstage.md @@ -16,14 +16,24 @@ Used for the **stages** property of [approval settings](accesspackageassignmenta ## Properties |Property|Type|Description| |:---|:---|:---| +|approverInformationVisibility|[approverInformationVisibility](#approverinformationvisibility-values)|Indicates whether approver information is visible to the requestor. The possible values are: `default`, `notVisible`, `visible`, `unknownFutureValue`.| |durationBeforeAutomaticDenial|Duration|The number of days that a request can be pending a response before it is automatically denied.| |durationBeforeEscalation|Duration|If escalation is required, the time a request can be pending a response from a primary approver.| -|escalationApprovers|[subjectSet](../resources/subjectset.md) collection|If escalation is enabled and the primary approvers do not respond before the escalation time, the escalationApprovers are the users who will be asked to approve requests. | +|escalationApprovers|[subjectSet](../resources/subjectset.md) collection|If escalation is enabled and the primary approvers do not respond before the escalation time, the escalationApprovers are the users who are asked to approve requests. | |fallbackEscalationApprovers|[subjectSet](../resources/subjectset.md) collection|The subjects, typically users, who are the fallback escalation approvers.| |fallbackPrimaryApprovers|[subjectSet](../resources/subjectset.md) collection|The subjects, typically users, who are the fallback primary approvers.| |isApproverJustificationRequired|Boolean|Indicates whether the approver is required to provide a justification for approving a request.| |isEscalationEnabled|Boolean|If `true`, then one or more **escalationApprovers** are configured in this approval stage.| -|primaryApprovers|[subjectSet](../resources/subjectset.md) collection|The subjects, typically users, who will be asked to approve requests. A collection of [singleUser](singleuser.md), [groupMembers](groupmembers.md), [requestorManager](requestormanager.md), [internalSponsors](internalsponsors.md), [externalSponsors](externalsponsors.md), or [targetUserSponsors](targetusersponsors.md).| +|primaryApprovers|[subjectSet](../resources/subjectset.md) collection|The subjects, typically users, who are asked to approve requests. A collection of [singleUser](singleuser.md), [groupMembers](groupmembers.md), [requestorManager](requestormanager.md), [internalSponsors](internalsponsors.md), [externalSponsors](externalsponsors.md), or [targetUserSponsors](targetusersponsors.md).| + +### approverInformationVisibility values + +| Member | Description | +|:-------------------|:-------------------------------------------------------------------| +| default | Use the default system setting for approver information visibility.| +| notVisible | Approver information is not visible to the requestor. | +| visible | Approver information is visible to the requestor. | +| unknownFutureValue | Do not use. | ## Relationships None. @@ -37,6 +47,7 @@ The following JSON representation shows the resource type. ``` json { "@odata.type": "#microsoft.graph.accessPackageApprovalStage", + "approverInformationVisibility": "String", "durationBeforeAutomaticDenial": "String (duration)", "durationBeforeEscalation": "String (duration)", "escalationApprovers": [ diff --git a/api-reference/v1.0/resources/accesspackageresourcerole.md b/api-reference/v1.0/resources/accesspackageresourcerole.md index 2958db0717b..9916eee4cdb 100644 --- a/api-reference/v1.0/resources/accesspackageresourcerole.md +++ b/api-reference/v1.0/resources/accesspackageresourcerole.md @@ -28,7 +28,8 @@ In [Microsoft Entra entitlement management](entitlementmanagement-overview.md), |displayName|String|The display name of the resource role such as the role defined by the application.| |id|String| Read-only.| |originId|String|The unique identifier of the resource role in the origin system. For a SharePoint Online site, the originId is the sequence number of the role in the site. | -|originSystem|String|The type of the resource in the origin system, such as `SharePointOnline`, `AadApplication`, or `AadGroup`.| +|originSystem|String|The type of the resource in the origin system, such as `SharePointOnline`, `AadApplication`, `AzureResources`, or `AadGroup`.| +|type|roleType|The role type for the Azure resource role. The possible values are: `active`, `eligible`, `application`, `delegated`, `unknownFutureValue`. The values `active` and `eligible` are only supported where **originSystem** is `AzureResources` while `application` and `delegated` aren't currently implemented.| ## Relationships @@ -55,6 +56,7 @@ The following JSON representation shows the resource. "displayName": "String", "id": "String (identifier)", "originId": "String", - "originSystem": "String" + "originSystem": "String", + "type": "String" } ``` diff --git a/api-reference/v1.0/resources/accesspackageresourcescope.md b/api-reference/v1.0/resources/accesspackageresourcescope.md index 2f920cb683f..13002bc96c4 100644 --- a/api-reference/v1.0/resources/accesspackageresourcescope.md +++ b/api-reference/v1.0/resources/accesspackageresourcescope.md @@ -26,8 +26,8 @@ If the resource is in an access package catalog but hasn't yet had its roles add |displayName|String|The display name of the scope.| |id|String| Read-only.| |isRootScope|Boolean|True if the scopes are arranged in a hierarchy and this is the top or root scope of the resource.| -|originId|String|The unique identifier for the scope in the resource as defined in the origin system.| -|originSystem|String|The origin system for the scope.| +|originId|String| The unique identifier of the resource in the origin system. If a Microsoft Entra group, originId is the identifier of the group. Supports `$filter` (`eq`).| +|originSystem|String| The type of the resource in the origin system, such as `SharePointOnline`, `AadApplication`, `AadGroup`, `AzureResources`, or `CustomDataProvidedResource`. Supports `$filter` (`eq`).| ## Relationships diff --git a/api-reference/v1.0/resources/accesspackagesuggestion.md b/api-reference/v1.0/resources/accesspackagesuggestion.md new file mode 100644 index 00000000000..12ee6c8b921 --- /dev/null +++ b/api-reference/v1.0/resources/accesspackagesuggestion.md @@ -0,0 +1,71 @@ +--- +title: "accessPackageSuggestion resource type" +description: "Represents a suggested access package with associated suggestion reasons for an end user." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "resourcePageType" +ms.date: 05/14/2026 +--- + +# accessPackageSuggestion resource type + +Namespace: microsoft.graph + +Represents a suggested access package with associated suggestion reasons in [Microsoft Entra entitlement management](../resources/entitlementmanagement-overview.md). Access packages are suggested to end users based on various criteria such as related people insights and assignment history. + +## Methods + +| Method | Return Type | Description | +|:-------------|:------------|:------------| +| [Filter by current user](../api/accesspackagesuggestions-filterbycurrentuser.md) | [accessPackageSuggestion](accesspackagesuggestion.md) collection | Retrieve suggested access packages for the current end user based on various criteria including related people insights. | + +## Properties + +| Property | Type | Description | +|:-------------|:------------|:------------| +|id|String|The identifier of the suggested access package. Read-only.| +|reasons|Collection([accessPackageSuggestionReason](../resources/accesspackagesuggestionreason.md))|A collection of reasons why this access package is being suggested to the user.| + +## Relationships + +| Relationship | Type | Description | +|:-------------|:------------|:------------| +|accessPackage|[availableAccessPackage](../resources/availableaccesspackage.md)|The access package information for the suggested package.| + +## JSON representation + +The following JSON representation shows the resource type. + + + +```json +{ + "@odata.type": "#microsoft.graph.accessPackageSuggestion", + "id": "String", + "reasons": [ + { + "@odata.type": "microsoft.graph.accessPackageSuggestionReason" + } + ], + "accessPackage": { + "@odata.type": "microsoft.graph.availableAccessPackage" + } +} +``` + + + diff --git a/api-reference/v1.0/resources/accesspackagesuggestionreason.md b/api-reference/v1.0/resources/accesspackagesuggestionreason.md new file mode 100644 index 00000000000..c2dd3be0404 --- /dev/null +++ b/api-reference/v1.0/resources/accesspackagesuggestionreason.md @@ -0,0 +1,53 @@ +--- +title: "accessPackageSuggestionReason resource type" +description: "Base type for reasons why an access package is suggested to an end user." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "resourcePageType" +ms.date: 05/14/2026 +--- + +# accessPackageSuggestionReason resource type + +Namespace: microsoft.graph + +Base type for **reasons** why an [access package is suggested](../resources/accesspackagesuggestion.md) to an end user in [Microsoft Entra entitlement management](../resources/entitlementmanagement-overview.md). This is an abstract type that is inherited by more specific suggestion reason types. + +Base type of [accessPackageSuggestionRelatedPeopleBased](../resources/accesspackagesuggestionrelatedpeoplebased.md) and [accessPackageSuggestionSelfAssignmentHistoryBased](../resources/accesspackagesuggestionselfassignmenthistorybased.md). + +## Properties + +None. + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + + +```json +{ + "@odata.type": "microsoft.graph.accessPackageSuggestionReason" +} +``` + + + diff --git a/api-reference/v1.0/resources/accesspackagesuggestionrelatedpeoplebased.md b/api-reference/v1.0/resources/accesspackagesuggestionrelatedpeoplebased.md new file mode 100644 index 00000000000..3e106e03b3c --- /dev/null +++ b/api-reference/v1.0/resources/accesspackagesuggestionrelatedpeoplebased.md @@ -0,0 +1,64 @@ +--- +title: "accessPackageSuggestionRelatedPeopleBased resource type" +description: "Represents access package suggestions based on related people insights, including related user identities." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "resourcePageType" +ms.date: 05/14/2026 +--- + +# accessPackageSuggestionRelatedPeopleBased resource type + +Namespace: microsoft.graph + +Represents access package suggestions that are based on related people insights in [Microsoft Entra entitlement management](../resources/entitlementmanagement-overview.md). This suggestion type includes information about related users who may have access to similar resources, helping to provide contextual suggestions to end users. + +Inherits from [accessPackageSuggestionReason](../resources/accesspackagesuggestionreason.md). + +## Properties + +| Property | Type | Description | +|:-------------|:------------|:------------| +|relatedPeople|Collection([identity](../resources/identity.md))|A collection of identities representing people related to the current user who may have access to similar resources. This property is only populated when the tenant's endUserSettings have `relatedPeopleInsightLevel` set to `countAndNames`. This includes both the user ID and display name information.| +|relatedPeopleAssignmentCount|Int32|The number of related people who have assignments to this access package. This count is always provided regardless of the `relatedPeopleInsightLevel` setting.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + + +```json +{ + "@odata.type": "#microsoft.graph.accessPackageSuggestionRelatedPeopleBased", + "relatedPeopleAssignmentCount": "Int32", + "relatedPeople": [ + { + "@odata.type": "microsoft.graph.identity", + "id": "String", + "displayName": "String" + } + ] +} +``` + + + diff --git a/api-reference/v1.0/resources/accesspackagesuggestionselfassignmenthistorybased.md b/api-reference/v1.0/resources/accesspackagesuggestionselfassignmenthistorybased.md new file mode 100644 index 00000000000..ad34d068f58 --- /dev/null +++ b/api-reference/v1.0/resources/accesspackagesuggestionselfassignmenthistorybased.md @@ -0,0 +1,58 @@ +--- +title: "accessPackageSuggestionSelfAssignmentHistoryBased resource type" +description: "Represents access package suggestions based on the user's own assignment history." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "resourcePageType" +ms.date: 05/14/2026 +--- + +# accessPackageSuggestionSelfAssignmentHistoryBased resource type + +Namespace: microsoft.graph + +Represents access package suggestions that are based on the user's own assignment history in [Microsoft Entra entitlement management](../resources/entitlementmanagement-overview.md). This suggestion type helps users rediscover access packages they have previously been assigned to. + +Inherits from [accessPackageSuggestionReason](../resources/accesspackagesuggestionreason.md). + +## Properties + +| Property | Type | Description | +|:-------------|:------------|:------------| +|lastAssignmentDateTime|DateTimeOffset|The date and time when the user was last assigned to this access package. The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Read-only.| +|pastAssignmentCount|Int32|The number of times the user has been assigned to this access package in the past. Read-only.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + + +```json +{ + "@odata.type": "#microsoft.graph.accessPackageSuggestionSelfAssignmentHistoryBased", + "pastAssignmentCount": "Int32", + "lastAssignmentDateTime": "String (timestamp)" +} +``` + + + diff --git a/api-reference/v1.0/resources/availableaccesspackage.md b/api-reference/v1.0/resources/availableaccesspackage.md new file mode 100644 index 00000000000..1dcbaef192e --- /dev/null +++ b/api-reference/v1.0/resources/availableaccesspackage.md @@ -0,0 +1,69 @@ +--- +title: "availableAccessPackage resource type" +description: "Represents basic access package information available to end users for access package suggestions and resource discovery." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "resourcePageType" +ms.date: 05/14/2026 +--- + +# availableAccessPackage resource type + +Namespace: microsoft.graph + +In [Microsoft Entra Entitlement Management](../resources/entitlementmanagement-overview.md), an available access package represents basic access package information (id, displayName, description) that is exposed to end users for [suggestions](../resources/accesspackagesuggestion.md) and [resource discovery](../api/availableaccesspackage-list-resourcerolescopes.md) purposes. + +This resource provides a simplified view of access packages that can be used in scenarios where end users need to browse available packages without requiring full access package details. + +## Methods + +| Method | Return Type | Description | +|:-------------|:------------|:------------| +| [List resourceRoleScopes](../api/availableaccesspackage-list-resourcerolescopes.md) | [accessPackageResourceRoleScope](../resources/accesspackageresourcerolescope.md) collection | Retrieve the resource role scopes for an available access package. | + +## Properties + +| Property | Type | Description | +|:-------------|:------------|:------------| +|description|String|The description of the access package.| +|displayName|String|The display name of the access package.| +|id|String|Identifier of the access package. Read-only.| + +## Relationships + +| Relationship | Type | Description | +|:-------------|:------------|:------------| +|resourceRoleScopes|[accessPackageResourceRoleScope](../resources/accesspackageresourcerolescope.md) collection|The resource role scopes associated with this available access package.| + +## JSON representation + +The following JSON representation shows the resource type. + + + +```json +{ + "@odata.type": "#microsoft.graph.availableAccessPackage", + "id": "String (identifier)", + "displayName": "String", + "description": "String" +} +``` + + + diff --git a/api-reference/v1.0/resources/controlconfiguration.md b/api-reference/v1.0/resources/controlconfiguration.md new file mode 100644 index 00000000000..34d3cdf9fe1 --- /dev/null +++ b/api-reference/v1.0/resources/controlconfiguration.md @@ -0,0 +1,56 @@ +--- +title: "controlConfiguration resource type" +description: "Defines the lifecycle and access policies of Entitlement Management within a tenant." +author: "myra-ramdenbourg" +ms.date: 05/14/2026 +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: resourcePageType +--- + +# controlConfiguration resource type + +Namespace: microsoft.graph + +Defines the lifecycle and access policies of Entitlement Management within a tenant. Abstract type from which the [endUserSettings](../resources/endusersettings.md) resource is derived. + +Inherits from [entity](../resources/entity.md). + +## Methods + +None. + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|createdBy|String|The userPrincipalName of the user or identity that created the control configuration.| +|createdDateTime|DateTimeOffset|The date and time the control configuration was created.| +|id|String|The unique identifier for the control configuration. Inherited from [entity](../resources/entity.md).| +|isEnabled|Boolean|Determines whether or not the control configuration is enabled.| +|modifiedBy|String|The userPrincipalName of the user or identity that modified the control configuration.| +|modifiedDateTime|DateTimeOffset|The date and time the control configuration was modified.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.controlConfiguration", + "id": "String (identifier)", + "isEnabled": "Boolean", + "createdBy": "String", + "createdDateTime": "String (timestamp)", + "modifiedBy": "String", + "modifiedDateTime": "String (timestamp)" +} +``` diff --git a/api-reference/v1.0/resources/endusersettings.md b/api-reference/v1.0/resources/endusersettings.md new file mode 100644 index 00000000000..b62b87bf288 --- /dev/null +++ b/api-reference/v1.0/resources/endusersettings.md @@ -0,0 +1,66 @@ +--- +title: "endUserSettings resource type" +description: "Settings that control the end user experience for access package suggestions and resource discovery in Microsoft Entra entitlement management." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "resourcePageType" +ms.date: 05/14/2026 +--- + +# endUserSettings resource type + +Namespace: microsoft.graph + +Represents settings that control the end user experience for access package suggestions and resource discovery in [Microsoft Entra entitlement management](../resources/entitlementmanagement-overview.md). These settings configure how suggestions are provided to end users and what level of related people insights are shown. + +Inherits from [controlConfiguration](../resources/controlconfiguration.md). + +## Methods + +| Method | Return Type | Description | +|:-------------|:------------|:------------| +| [Get](../api/endusersettings-get.md) | [endUserSettings](endusersettings.md) | Read the properties and relationships of an **endUserSettings** object. | +| [Update](../api/endusersettings-update.md) | [endUserSettings](endusersettings.md) | Update the properties of an **endUserSettings** object. | + +## Properties + +| Property | Type | Description | +|:-------------|:------------|:------------| +|relatedPeopleInsightLevel|accessPackageSuggestionRelatedPeopleInsightLevel|The level of related people insights to show in access package suggestions. The possible values are: `disabled`, `count`, `countAndNames`, `unknownFutureValue`.| +|showApproverDetailsToMembers|Boolean|Indicates whether approver details are shown to end users. When `true`, approver information is visible to members.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + + +```json +{ + "@odata.type": "#microsoft.graph.endUserSettings", + "relatedPeopleInsightLevel": "String", + "showApproverDetailsToMembers": "Boolean" +} +``` + + + diff --git a/api-reference/v1.0/resources/entitlementmanagement.md b/api-reference/v1.0/resources/entitlementmanagement.md index c5bd739f23e..fd952a37b73 100644 --- a/api-reference/v1.0/resources/entitlementmanagement.md +++ b/api-reference/v1.0/resources/entitlementmanagement.md @@ -28,11 +28,14 @@ None. |:---|:---|:---| |accessPackageAssignmentApprovals|[approval](../resources/approval.md) collection | Approval stages for decisions associated with access package assignment requests.| |accessPackages|[accessPackage](../resources/accesspackage.md) collection|Access packages define the collection of resource roles and the policies for which subjects can request or be assigned access to those resources.| +|accessPackageSuggestions|[accessPackageSuggestion](../resources/accesspackagesuggestion.md) collection|Suggested access packages for end users based on various criteria such as related people insights and assignment history.| +|availableAccessPackages|[availableAccessPackage](../resources/availableaccesspackage.md) collection|Access packages available for end users to browse and request.| |assignmentPolicies|[accessPackageAssignmentPolicy](../resources/accesspackageassignmentpolicy.md) collection|Access package assignment policies govern which subjects can request or be assigned an access package via an access package assignment.| |assignmentRequests|[accessPackageAssignmentRequest](../resources/accesspackageassignmentrequest.md) collection|Access package assignment requests created by or on behalf of a subject.| |assignments|[accessPackageAssignment](../resources/accesspackageassignment.md) collection| The assignment of an access package to a subject for a period of time.| |catalogs|[accessPackageCatalog](../resources/accesspackagecatalog.md) collection|A container for access packages.| |connectedOrganizations|[connectedOrganization](../resources/connectedorganization.md) collection|References to a directory or domain of another organization whose users can request access.| +|controlConfigurations|[controlConfiguration](../resources/controlconfiguration.md) collection|Configuration settings that control the lifecycle and access policies of entitlement management within a tenant.| |resourceEnvironments|[accessPackageResourceEnvironment](../resources/accesspackageresourceenvironment.md) collection| A reference to the geolocation environments in which a resource is located.| |resourceRequests|[accessPackageResourceRequest](../resources/accesspackageresourcerequest.md) collection|Represents a request to add or remove a resource to or from a catalog respectively. | |resources|[accessPackageResource](../resources/accesspackageresource.md) collection|The resources associated with the catalogs. | diff --git a/api-reference/v1.0/resources/enums.md b/api-reference/v1.0/resources/enums.md index 74e42180039..2bcf7aa5cc7 100644 --- a/api-reference/v1.0/resources/enums.md +++ b/api-reference/v1.0/resources/enums.md @@ -675,6 +675,16 @@ Namespace: microsoft.graph | approver | | unknownFutureValue | +### roleType values + +| Member | +| ------ | +| active | +| eligible | +| application | +| delegated | +| unknownFutureValue | + ### unifiedRoleManagementPolicyRuleTargetOperations values | Member | @@ -798,6 +808,33 @@ Namespace: microsoft.graph | allowedRequestor | | unknownFutureValue | +### accessPackageSuggestionFilterByCurrentUserOptions values + +| Member | +| ---- | +| none | +| relatedPeopleAssignments | +| assignmentHistory | +| unknownFutureValue | + +### accessPackageSuggestionRelatedPeopleInsightLevel values + +| Member | +| ---- | +| disabled | +| count | +| countAndNames | +| unknownFutureValue | + +### approverInformationVisibility values + +| Member | +| ---- | +| default | +| notVisible | +| visible | +| unknownFutureValue | + ### accessPackageRequestState values | Member | diff --git a/api-reference/v1.0/resources/identity.md b/api-reference/v1.0/resources/identity.md index 6e8e4a24567..56619667bef 100644 --- a/api-reference/v1.0/resources/identity.md +++ b/api-reference/v1.0/resources/identity.md @@ -14,7 +14,7 @@ Namespace: microsoft.graph Represents an identity of an _actor_. For example, an actor can be a user, device, or application. Multiple Microsoft Graph APIs share this resource and the data they return varies depending on the API. -Base type of [userIdentity](useridentity.md). +Base type of [userIdentity](useridentity.md). ## Properties diff --git a/api-reference/v1.0/toc/identity-and-access/toc.yml b/api-reference/v1.0/toc/identity-and-access/toc.yml index eada9ebb303..209400c448b 100644 --- a/api-reference/v1.0/toc/identity-and-access/toc.yml +++ b/api-reference/v1.0/toc/identity-and-access/toc.yml @@ -770,6 +770,18 @@ items: href: ../../api/accesspackageassignmentworkflowextension-delete.md - name: Access package subject href: ../../resources/accesspackagesubject.md + - name: Access package suggestion + items: + - name: Access package suggestion + href: ../../resources/accesspackagesuggestion.md + - name: Filter by current user + href: ../../api/accesspackagesuggestions-filterbycurrentuser.md + - name: Available access package + items: + - name: Available access package + href: ../../resources/availableaccesspackage.md + - name: List resourceRoleScopes + href: ../../api/availableaccesspackage-list-resourcerolescopes.md - name: Connected organization items: - name: Connected organization @@ -800,6 +812,14 @@ items: href: ../../api/connectedorganization-post-internalsponsors.md - name: Remove href: ../../api/connectedorganization-delete-internalsponsors.md + - name: End user settings + items: + - name: End user settings + href: ../../resources/endusersettings.md + - name: Get + href: ../../api/endusersettings-get.md + - name: Update + href: ../../api/endusersettings-update.md - name: Entitlement management settings items: - name: Entitlement management settings @@ -846,6 +866,12 @@ items: href: ../../resources/accesspackageresourceattributesource.md - name: Access package resource scope href: ../../resources/accesspackageresourcescope.md + - name: Access package suggestion reason + href: ../../resources/accesspackagesuggestionreason.md + - name: Access package suggestion related people based + href: ../../resources/accesspackagesuggestionrelatedpeoplebased.md + - name: Access package suggestion self assignment history based + href: ../../resources/accesspackagesuggestionselfassignmenthistorybased.md - name: Access package text input question href: ../../resources/accesspackagetextinputquestion.md - name: Access package user directory attribute store diff --git a/api-reference/v1.0/toc/toc.mapping.json b/api-reference/v1.0/toc/toc.mapping.json index ff7b6b61ecc..95fcebd97de 100644 --- a/api-reference/v1.0/toc/toc.mapping.json +++ b/api-reference/v1.0/toc/toc.mapping.json @@ -931,7 +931,10 @@ "accessPackageAssignmentRequestWorkflowExtension", "accessPackageAssignmentWorkflowExtension", "accessPackageSubject", + "accessPackageSuggestion", + "availableAccessPackage", "connectedOrganization", + "endUserSettings", "entitlementManagementSettings" ], "complexTypes": [ @@ -953,6 +956,9 @@ "accessPackageResourceAttributeQuestion", "accessPackageResourceAttributeSource", "accessPackageResourceScope", + "accessPackageSuggestionReason", + "accessPackageSuggestionRelatedPeopleBased", + "accessPackageSuggestionSelfAssignmentHistoryBased", "accessPackageTextInputQuestion", "accessPackageUserDirectoryAttributeStore", "attributeRuleMembers", diff --git a/changelog/Microsoft.AAD.Reporting.json b/changelog/Microsoft.AAD.Reporting.json index 15d7eb426b4..2840c3d6c4d 100644 --- a/changelog/Microsoft.AAD.Reporting.json +++ b/changelog/Microsoft.AAD.Reporting.json @@ -821,7 +821,7 @@ "ApiChange": "Resource", "ChangedApiName": "conditionalAccessAudience", "ChangeType": "Addition", - "Description": "Added the [conditionalAccessAudience](https://learn.microsoft.com/en-us/graph/api/resources/conditionalAccessAudience?view=graph-rest-beta) resource.", + "Description": "Added the **conditionalAccessAudience** resource.", "Target": "conditionalAccessAudience" }, { diff --git a/changelog/Microsoft.Analytics.json b/changelog/Microsoft.Analytics.json index 7a89b5780c0..0c0964ed845 100644 --- a/changelog/Microsoft.Analytics.json +++ b/changelog/Microsoft.Analytics.json @@ -33,7 +33,7 @@ "ApiChange": "Resource", "ChangedApiName": "itemInsightsSettings", "ChangeType": "Addition", - "Description": "Added the **itemInsightsSettings** entity and the following operations: [Get itemInsightSettings](https://learn.microsoft.com/en-us/graph/api/iteminsightssettings-get?view=graph-rest-beta), [Update itemInsightSettings](https://learn.microsoft.com/en-us/graph/api/iteminsightssettings-update?view=graph-rest-beta)", + "Description": "Added the **itemInsightsSettings** entity and the following operations: **Get itemInsightSettings**, **Update itemInsightSettings**", "Target": "Get itemInsightSettings,Update itemInsightSettings" } ], @@ -59,7 +59,7 @@ "ApiChange": "Resource", "ChangedApiName": "profileCardProperty", "ChangeType": "Addition", - "Description": "Added the **profileCardProperty** entity and the following operations: [List](https://learn.microsoft.com/en-us/graph/api/organizationsettings-list-profilecardproperties), [Create](https://learn.microsoft.com/en-us/graph/api/organizationsettings-post-profilecardproperties), [Get](https://learn.microsoft.com/en-us/graph/api/profilecardproperty-get?view=graph-rest-beta), [Update](https://learn.microsoft.com/en-us/graph/api/profilecardproperty-update?view=graph-rest-beta), [Delete](https://learn.microsoft.com/en-us/graph/api/profilecardproperty-delete).", + "Description": "Added the **profileCardProperty** entity and the following operations: **List**, **Create**, [Get](https://learn.microsoft.com/en-us/graph/api/profilecardproperty-get?view=graph-rest-beta), [Update](https://learn.microsoft.com/en-us/graph/api/profilecardproperty-update?view=graph-rest-beta), [Delete](https://learn.microsoft.com/en-us/graph/api/profilecardproperty-delete).", "Target": "List,Create,Get,Update,Delete" } ], diff --git a/changelog/Microsoft.BusinessExtensibility.json b/changelog/Microsoft.BusinessExtensibility.json index b26e365273d..7c2cbef7d81 100644 --- a/changelog/Microsoft.BusinessExtensibility.json +++ b/changelog/Microsoft.BusinessExtensibility.json @@ -131,7 +131,7 @@ "ApiChange": "Method", "ChangedApiName": "POST", "ChangeType": "Deletion", - "Description": "Removed the [Create](https://learn.microsoft.com/en-us/graph/api/plannerplanconfiguration-post-localizations?view=graph-rest-beta&tabs=http) method from the [plannerplanconfiguration](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfiguration?view=graph-rest-beta) resource.", + "Description": "Removed the **Create** method from the [plannerplanconfiguration](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfiguration?view=graph-rest-beta) resource.", "Target": "Plannerplanconfiguration" }, { @@ -139,7 +139,7 @@ "ApiChange": "Method", "ChangedApiName": "POST", "ChangeType": "Deletion", - "Description": "Removed the [Create](https://learn.microsoft.com/en-us/graph/api/plannerplanconfiguration-post-localizations?view=graph-rest-beta&tabs=http) method from the [plannerPlanConfigurationLocalization](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfigurationlocalization?view=graph-rest-beta) resource.", + "Description": "Removed the **Create** method from the [plannerPlanConfigurationLocalization](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfigurationlocalization?view=graph-rest-beta) resource.", "Target": "plannerPlanConfigurationLocalization" }, { @@ -147,7 +147,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Deletion", - "Description": "Removed the [Get](https://learn.microsoft.com/en-us/graph/api/plannerplanconfigurationlocalization-get?view=graph-rest-beta&tabs=http) from the [plannerPlanConfigurationLocalization](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfigurationlocalization?view=graph-rest-beta) resource.", + "Description": "Removed the **Get** from the [plannerPlanConfigurationLocalization](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfigurationlocalization?view=graph-rest-beta) resource.", "Target": "plannerPlanConfigurationLocalization" }, { @@ -155,7 +155,7 @@ "ApiChange": "Method", "ChangedApiName": "PATCH", "ChangeType": "Deletion", - "Description": "Removed the [Update](https://learn.microsoft.com/en-us/graph/api/plannerplanconfigurationlocalization-update?view=graph-rest-beta&tabs=http) method from the [plannerPlanConfigurationLocalization](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfigurationlocalization?view=graph-rest-beta) resource.", + "Description": "Removed the **Update** method from the [plannerPlanConfigurationLocalization](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfigurationlocalization?view=graph-rest-beta) resource.", "Target": "plannerPlanConfigurationLocalization" }, { @@ -163,7 +163,7 @@ "ApiChange": "Method", "ChangedApiName": "DELETE", "ChangeType": "Deletion", - "Description": "Removed the [Delete](https://learn.microsoft.com/en-us/graph/api/plannerplanconfiguration-delete-localizations?view=graph-rest-beta&tabs=http) method from the [plannerPlanConfigurationLocalization](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfigurationlocalization?view=graph-rest-beta) resource.", + "Description": "Removed the **Delete** method from the [plannerPlanConfigurationLocalization](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfigurationlocalization?view=graph-rest-beta) resource.", "Target": "plannerPlanConfigurationLocalization" } ], diff --git a/changelog/Microsoft.CloudManagedDesktop.json b/changelog/Microsoft.CloudManagedDesktop.json index c88507b0ec9..19fde0c44cd 100644 --- a/changelog/Microsoft.CloudManagedDesktop.json +++ b/changelog/Microsoft.CloudManagedDesktop.json @@ -595,7 +595,7 @@ "ApiChange": "Property", "ChangedApiName": "availabilityZoneRestricted", "ChangeType": "Addition", - "Description": "Added the **availabilityZoneRestricted** property to the [cloudPcSupportedRegionRestrictionDetail](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcSupportedRegionRestrictionDetail?view=graph-rest-beta) resource.", + "Description": "Added the **availabilityZoneRestricted** property to the **cloudPcSupportedRegionRestrictionDetail** resource.", "Target": "cloudPcSupportedRegionRestrictionDetail" } ], @@ -1333,7 +1333,7 @@ "ApiChange": "Resource", "ChangedApiName": "cloudPcSnapshotImportActionResult", "ChangeType": "Addition", - "Description": "Added the [cloudPcSnapshotImportActionResult](https://learn.microsoft.com/en-us/graph/resources/cloudpcsnapshotimportactionresult?view=graph-rest-beta) resource type.", + "Description": "Added the **cloudPcSnapshotImportActionResult** resource type.", "Target": "cloudPcSnapshotImportActionResult" }, { @@ -1341,7 +1341,7 @@ "ApiChange": "Resource", "ChangedApiName": "cloudPcSnapshotImportActionDetail", "ChangeType": "Addition", - "Description": "Added the [cloudPcSnapshotImportActionDetail](https://learn.microsoft.com/en-us/graph/resources/cloudpcsnapshotimportactiondetail?view=graph-rest-beta) resource type.", + "Description": "Added the **cloudPcSnapshotImportActionDetail** resource type.", "Target": "cloudPcSnapshotImportActionDetail" }, { @@ -1349,7 +1349,7 @@ "ApiChange": "Resource", "ChangedApiName": "cloudPcStorageBlobDetail", "ChangeType": "Addition", - "Description": "Added the [cloudPcSnapshotImportActionDetail](https://learn.microsoft.com/en-us/graph/resources/cloudpcstorageblobdetail?view=graph-rest-beta) resource type.", + "Description": "Added the **cloudPcSnapshotImportActionDetail** resource type.", "Target": "cloudPcStorageBlobDetail" }, { @@ -1515,7 +1515,7 @@ "ApiChange": "Property", "ChangedApiName": "osArchitecture", "ChangeType": "Addition", - "Description": "Added the **osArchitecture** property to the [cloudPcDeviceImage](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcDeviceImage?view=graph-rest-beta) resource.", + "Description": "Added the **osArchitecture** property to the **cloudPcDeviceImage** resource.", "Target": "cloudPcDeviceImage" }, { @@ -1523,7 +1523,7 @@ "ApiChange": "Property", "ChangedApiName": "osArchitecture", "ChangeType": "Addition", - "Description": "Added the **osArchitecture** property to the [cloudPcGalleryImage](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcGalleryImage?view=graph-rest-beta) resource.", + "Description": "Added the **osArchitecture** property to the **cloudPcGalleryImage** resource.", "Target": "cloudPcGalleryImage" } ], @@ -1861,7 +1861,7 @@ "ApiChange": "Property", "ChangedApiName": "geographicLocationType", "ChangeType": "Addition", - "Description": "Added the **geographicLocationType** property to the [cloudPcDomainJoinConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcDomainJoinConfiguration?view=graph-rest-beta) resource.", + "Description": "Added the **geographicLocationType** property to the **cloudPcDomainJoinConfiguration** resource.", "Target": "cloudPcDomainJoinConfiguration" }, { @@ -1869,7 +1869,7 @@ "ApiChange": "Property", "ChangedApiName": "geographicLocationType", "ChangeType": "Addition", - "Description": "Added the **geographicLocationType** property to the [cloudPcSupportedRegion](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcSupportedRegion?view=graph-rest-beta) resource.", + "Description": "Added the **geographicLocationType** property to the **cloudPcSupportedRegion** resource.", "Target": "cloudPcSupportedRegion" } ], @@ -2331,7 +2331,7 @@ "ApiChange": "Property", "ChangedApiName": "endDateTime", "ChangeType": "Addition", - "Description": "Added the **endDateTime** property to the [cloudPcPolicyScheduledApplyActionDetail](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcPolicyScheduledApplyActionDetail?view=graph-rest-beta) resource.", + "Description": "Added the **endDateTime** property to the **cloudPcPolicyScheduledApplyActionDetail** resource.", "Target": "cloudPcPolicyScheduledApplyActionDetail" }, { @@ -2339,7 +2339,7 @@ "ApiChange": "Property", "ChangedApiName": "nextRunDateTime", "ChangeType": "Addition", - "Description": "Added the **nextRunDateTime** property to the [cloudPcPolicyScheduledApplyActionDetail](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcPolicyScheduledApplyActionDetail?view=graph-rest-beta) resource.", + "Description": "Added the **nextRunDateTime** property to the **cloudPcPolicyScheduledApplyActionDetail** resource.", "Target": "cloudPcPolicyScheduledApplyActionDetail" }, { @@ -2347,7 +2347,7 @@ "ApiChange": "Property", "ChangedApiName": "startDateTime", "ChangeType": "Addition", - "Description": "Added the **startDateTime** property to the [cloudPcPolicyScheduledApplyActionDetail](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcPolicyScheduledApplyActionDetail?view=graph-rest-beta) resource.", + "Description": "Added the **startDateTime** property to the **cloudPcPolicyScheduledApplyActionDetail** resource.", "Target": "cloudPcPolicyScheduledApplyActionDetail" }, { @@ -2355,7 +2355,7 @@ "ApiChange": "Property", "ChangedApiName": "timezone", "ChangeType": "Addition", - "Description": "Added the **timezone** property to the [cloudPcPolicyScheduledApplyActionDetail](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcPolicyScheduledApplyActionDetail?view=graph-rest-beta) resource.", + "Description": "Added the **timezone** property to the **cloudPcPolicyScheduledApplyActionDetail** resource.", "Target": "cloudPcPolicyScheduledApplyActionDetail" } ], diff --git a/changelog/Microsoft.Cross.Tenant.Migration.json b/changelog/Microsoft.Cross.Tenant.Migration.json index c07cf0c6ceb..f9585576e69 100644 --- a/changelog/Microsoft.Cross.Tenant.Migration.json +++ b/changelog/Microsoft.Cross.Tenant.Migration.json @@ -1,5 +1,87 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Method", + "ChangedApiName": "migrate", + "ChangeType": "Addition", + "Description": "Added the [migrate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-migrate?view=graph-rest-beta) method to the [crossTenantMigrationJob](https://learn.microsoft.com/en-us/graph/api/resources/crossTenantMigrationJob?view=graph-rest-beta) resource.", + "Target": "crossTenantMigrationJob" + }, + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Method", + "ChangedApiName": "validate", + "ChangeType": "Change", + "Description": "Changed the behavior of the [validate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-validate?view=graph-rest-beta) method on the [crossTenantMigrationJob](https://learn.microsoft.com/en-us/graph/api/resources/crossTenantMigrationJob?view=graph-rest-beta) resource to validate an existing job as an entity-bound action. Going forward, use the `POST /solutions/migrations/crossTenantMigrationJobs/{crossTenantMigrationJobId}/validate` endpoint to trigger the validation of an existing cross-tenant migration job.", + "Target": "crossTenantMigrationJob" + }, + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Parameter", + "ChangedApiName": "displayName", + "ChangeType": "Deletion", + "Description": "Removed the **displayName** parameter from the [validate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-validate?view=graph-rest-beta) method.", + "Target": "validate" + }, + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Parameter", + "ChangedApiName": "completeAfterDateTime", + "ChangeType": "Deletion", + "Description": "Removed the **completeAfterDateTime** parameter from the [validate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-validate?view=graph-rest-beta) method.", + "Target": "validate" + }, + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Parameter", + "ChangedApiName": "sourceTenantId", + "ChangeType": "Deletion", + "Description": "Removed the **sourceTenantId** parameter from the [validate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-validate?view=graph-rest-beta) method.", + "Target": "validate" + }, + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Parameter", + "ChangedApiName": "exchangeSettings", + "ChangeType": "Deletion", + "Description": "Removed the **exchangeSettings** parameter from the [validate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-validate?view=graph-rest-beta) method.", + "Target": "validate" + }, + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Parameter", + "ChangedApiName": "workloads", + "ChangeType": "Deletion", + "Description": "Removed the **workloads** parameter from the [validate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-validate?view=graph-rest-beta) method.", + "Target": "validate" + }, + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Parameter", + "ChangedApiName": "resourceType", + "ChangeType": "Deletion", + "Description": "Removed the **resourceType** parameter from the [validate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-validate?view=graph-rest-beta) method.", + "Target": "validate" + }, + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Parameter", + "ChangedApiName": "resources", + "ChangeType": "Deletion", + "Description": "Removed the **resources** parameter from the [validate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-validate?view=graph-rest-beta) method.", + "Target": "validate" + } + ], + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-19T23:11:16.5022242Z", + "WorkloadArea": "Tenants", + "SubArea": "Cross-tenant migration" + }, { "ChangeList": [ { diff --git a/changelog/Microsoft.DataClassificationService.json b/changelog/Microsoft.DataClassificationService.json index 675b725179d..1e2dbed677d 100644 --- a/changelog/Microsoft.DataClassificationService.json +++ b/changelog/Microsoft.DataClassificationService.json @@ -1,5 +1,47 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "c9d06e62-9da2-47bc-9a90-6940b8078c55", + "ApiChange": "Member", + "ChangedApiName": "policyTip", + "ChangeType": "Addition", + "Description": "Added the `policyTip` member to the **dlpAction** enumeration.", + "Target": "dlpAction" + }, + { + "Id": "c9d06e62-9da2-47bc-9a90-6940b8078c55", + "ApiChange": "Property", + "ChangedApiName": "overrideOption", + "ChangeType": "Deletion", + "Description": "Removed the **overrideOption** property from the [notifyUserAction](https://learn.microsoft.com/en-us/graph/api/resources/notifyUserAction?view=graph-rest-beta) resource.", + "Target": "notifyUserAction" + }, + { + "Id": "c9d06e62-9da2-47bc-9a90-6940b8078c55", + "ApiChange": "Property", + "ChangedApiName": "policyTip", + "ChangeType": "Deletion", + "Description": "Removed the **policyTip** property from the [notifyUserAction](https://learn.microsoft.com/en-us/graph/api/resources/notifyUserAction?view=graph-rest-beta) resource.", + "Target": "notifyUserAction" + }, + { + "Id": "c9d06e62-9da2-47bc-9a90-6940b8078c55", + "ApiChange": "Resource", + "ChangedApiName": "policyTipAction", + "ChangeType": "Addition", + "Description": "Added the [policyTipAction](https://learn.microsoft.com/en-us/graph/api/resources/policyTipAction?view=graph-rest-beta) resource.", + "Target": "policyTipAction" + } + ], + "Id": "c9d06e62-9da2-47bc-9a90-6940b8078c55", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-19T16:29:50.6220555Z", + "WorkloadArea": "Security", + "SubArea": "" + }, { "ChangeList": [ { @@ -949,7 +991,7 @@ "ApiChange": "Method", "ChangedApiName": "computeRightsAndInheritance", "ChangeType": "Addition", - "Description": "Added the [computeRightsAndInheritance](https://learn.microsoft.com/en-us/graph/api/sensitivityLabel-computeRightsAndInheritance?view=graph-rest-1.0) method to the [sensitivityLabel](https://learn.microsoft.com/en-us/graph/api/resources/sensitivityLabel?view=graph-rest-1.0) resource.", + "Description": "Added the [computeRightsAndInheritance](https://learn.microsoft.com/en-us/graph/api/sensitivityLabel-computeRightsAndInheritance?view=graph-rest-1.0) method to the **sensitivityLabel** resource.", "Target": "sensitivityLabel" }, { @@ -973,7 +1015,7 @@ "ApiChange": "Method", "ChangedApiName": "computeInheritance", "ChangeType": "Addition", - "Description": "Added the [computeInheritance](https://learn.microsoft.com/en-us/graph/api/sensitivityLabel-computeInheritance?view=graph-rest-1.0) method to the [sensitivityLabel](https://learn.microsoft.com/en-us/graph/api/resources/sensitivityLabel?view=graph-rest-1.0) resource.", + "Description": "Added the [computeInheritance](https://learn.microsoft.com/en-us/graph/api/sensitivityLabel-computeInheritance?view=graph-rest-1.0) method to the **sensitivityLabel** resource.", "Target": "sensitivityLabel" }, { diff --git a/changelog/Microsoft.DeviceRegistrationPolicies.json b/changelog/Microsoft.DeviceRegistrationPolicies.json index 9d97b0ba067..a26b30b5731 100644 --- a/changelog/Microsoft.DeviceRegistrationPolicies.json +++ b/changelog/Microsoft.DeviceRegistrationPolicies.json @@ -147,7 +147,7 @@ "ApiChange": "Property", "ChangedApiName": "allowedGroups", "ChangeType": "Deletion", - "Description": "Removed the `allowedGroups` property from the [azureADJoinPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADJoinPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement [Important: Update to deviceRegistrationPolicy resource type](https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/important-update-to-deviceregistrationpolicy-resource-type-for/ba-p/3912000).", + "Description": "Removed the `allowedGroups` property from the [azureADJoinPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADJoinPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement **Important: Update to deviceRegistrationPolicy resource type**.", "Target": "azureADJoinPolicy" }, { @@ -163,7 +163,7 @@ "ApiChange": "Property", "ChangedApiName": "allowedUsers", "ChangeType": "Deletion", - "Description": "Removed the `allowedUsers` property from the [azureADJoinPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADJoinPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement [Important: Update to deviceRegistrationPolicy resource type](https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/important-update-to-deviceregistrationpolicy-resource-type-for/ba-p/3912000).", + "Description": "Removed the `allowedUsers` property from the [azureADJoinPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADJoinPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement **Important: Update to deviceRegistrationPolicy resource type**.", "Target": "azureADJoinPolicy" }, { @@ -171,7 +171,7 @@ "ApiChange": "Property", "ChangedApiName": "appliesTo", "ChangeType": "Deletion", - "Description": "Removed the `appliesTo` property from the [azureADJoinPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADJoinPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement [Important: Update to deviceRegistrationPolicy resource type](https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/important-update-to-deviceregistrationpolicy-resource-type-for/ba-p/3912000).", + "Description": "Removed the `appliesTo` property from the [azureADJoinPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADJoinPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement **Important: Update to deviceRegistrationPolicy resource type**.", "Target": "azureADJoinPolicy" }, { @@ -179,7 +179,7 @@ "ApiChange": "Property", "ChangedApiName": "allowedGroups", "ChangeType": "Deletion", - "Description": "Removed the `allowedGroups` property from the [azureADRegistrationPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADRegistrationPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement [Important: Update to deviceRegistrationPolicy resource type](https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/important-update-to-deviceregistrationpolicy-resource-type-for/ba-p/3912000).", + "Description": "Removed the `allowedGroups` property from the [azureADRegistrationPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADRegistrationPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement **Important: Update to deviceRegistrationPolicy resource type**.", "Target": "azureADRegistrationPolicy" }, { @@ -195,7 +195,7 @@ "ApiChange": "Property", "ChangedApiName": "allowedUsers", "ChangeType": "Deletion", - "Description": "Removed the `allowedUsers` property from the [azureADRegistrationPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADRegistrationPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement [Important: Update to deviceRegistrationPolicy resource type](https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/important-update-to-deviceregistrationpolicy-resource-type-for/ba-p/3912000).", + "Description": "Removed the `allowedUsers` property from the [azureADRegistrationPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADRegistrationPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement **Important: Update to deviceRegistrationPolicy resource type**.", "Target": "azureADRegistrationPolicy" }, { @@ -203,7 +203,7 @@ "ApiChange": "Property", "ChangedApiName": "appliesTo", "ChangeType": "Deletion", - "Description": "Removed the `appliesTo` property from the [azureADRegistrationPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADRegistrationPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement [Important: Update to deviceRegistrationPolicy resource type](https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/important-update-to-deviceregistrationpolicy-resource-type-for/ba-p/3912000).", + "Description": "Removed the `appliesTo` property from the [azureADRegistrationPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADRegistrationPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement **Important: Update to deviceRegistrationPolicy resource type**.", "Target": "azureADRegistrationPolicy" }, { diff --git a/changelog/Microsoft.DirectoryServices.json b/changelog/Microsoft.DirectoryServices.json index 82c3c71f162..0581e8855af 100644 --- a/changelog/Microsoft.DirectoryServices.json +++ b/changelog/Microsoft.DirectoryServices.json @@ -999,7 +999,7 @@ "ApiChange": "Method", "ChangedApiName": "restore", "ChangeType": "Addition", - "Description": "Added the [restore](https://learn.microsoft.com/en-us/graph/api/crossTenantAccessPolicyConfigurationDomainBasedPartner-restore?view=graph-rest-beta) method to the [crossTenantAccessPolicyConfigurationDomainBasedPartner](https://learn.microsoft.com/en-us/graph/api/resources/crossTenantAccessPolicyConfigurationDomainBasedPartner?view=graph-rest-beta) resource.", + "Description": "Added the **restore** method to the **crossTenantAccessPolicyConfigurationDomainBasedPartner** resource.", "Target": "crossTenantAccessPolicyConfigurationDomainBasedPartner" }, { @@ -1023,7 +1023,7 @@ "ApiChange": "Method", "ChangedApiName": "restore", "ChangeType": "Addition", - "Description": "Added the [restore](https://learn.microsoft.com/en-us/graph/api/serviceProviderConstraints-restore?view=graph-rest-beta) method to the [serviceProviderConstraints](https://learn.microsoft.com/en-us/graph/api/resources/serviceProviderConstraints?view=graph-rest-beta) resource.", + "Description": "Added the **restore** method to the **serviceProviderConstraints** resource.", "Target": "serviceProviderConstraints" } ], @@ -10177,7 +10177,7 @@ "ApiChange": "Resource", "ChangedApiName": "acceptRecommendations, applyDecisions, get, list, list pendingAccessReviewInstances, sendReminder, stop", "ChangeType": "Addition", - "Description": "Added the [acceptRecommendations](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-acceptrecommendations?view=graph-rest-1.0), [applyDecisions](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-applydecisions?view=graph-rest-1.0), [get](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-get?view=graph-rest-1.0), [list](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-list?view=graph-rest-1.0), [list pendingAccessReviewInstances](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-pendingaccessreviewinstances?view=graph-rest-1.0), [sendReminder](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-sendreminder?view=graph-rest-1.0), [stop](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-stop?view=graph-rest-1.0) methods to the [accessReviewInstance](https://learn.microsoft.com/en-us/graph/api/resources/accessReviewInstance?view=graph-rest-1.0) resource.", + "Description": "Added the [acceptRecommendations](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-acceptrecommendations?view=graph-rest-1.0), [applyDecisions](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-applydecisions?view=graph-rest-1.0), [get](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-get?view=graph-rest-1.0), **list**, [list pendingAccessReviewInstances](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-pendingaccessreviewinstances?view=graph-rest-1.0), [sendReminder](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-sendreminder?view=graph-rest-1.0), [stop](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-stop?view=graph-rest-1.0) methods to the [accessReviewInstance](https://learn.microsoft.com/en-us/graph/api/resources/accessReviewInstance?view=graph-rest-1.0) resource.", "Target": "accessReviewInstance" }, { @@ -10185,7 +10185,7 @@ "ApiChange": "Resource", "ChangedApiName": "list, list pendingApproval, update", "ChangeType": "Addition", - "Description": "Added the [list](https://learn.microsoft.com/en-us/graph/api/accessreviewinstancedecisionitem-list?view=graph-rest-1.0), [list pendingApproval](https://learn.microsoft.com/en-us/graph/api/accessreviewinstancedecisionitem-listpendingapproval?view=graph-rest-1.0), [update](https://learn.microsoft.com/en-us/graph/api/accessreviewinstancedecisionitem-update?view=graph-rest-1.0) methods to the [accessReviewInstanceDecisionItem](https://learn.microsoft.com/en-us/graph/api/resources/accessreviewinstancedecisionitem?view=graph-rest-1.0) resource.", + "Description": "Added the **list**, [list pendingApproval](https://learn.microsoft.com/en-us/graph/api/accessreviewinstancedecisionitem-listpendingapproval?view=graph-rest-1.0), [update](https://learn.microsoft.com/en-us/graph/api/accessreviewinstancedecisionitem-update?view=graph-rest-1.0) methods to the [accessReviewInstanceDecisionItem](https://learn.microsoft.com/en-us/graph/api/resources/accessreviewinstancedecisionitem?view=graph-rest-1.0) resource.", "Target": "accessReviewInstanceDecisionItem" }, { @@ -10193,7 +10193,7 @@ "ApiChange": "Resource", "ChangedApiName": "create, delete, get, list, update", "ChangeType": "Addition", - "Description": "Added the [create](https://learn.microsoft.com/en-us/graph/api/accessreviewset-post-definitions?view=graph-rest-1.0), [delete](https://learn.microsoft.com/en-us/graph/api/accessreviewscheduledefinition-delete?view=graph-rest-1.0), [get](https://learn.microsoft.com/en-us/graph/api/accessreviewscheduledefinition-get?view=graph-rest-1.0), [list](https://learn.microsoft.com/en-us/graph/api/accessreviewscheduledefinition-list?view=graph-rest-1.0), [update](https://learn.microsoft.com/en-us/graph/api/accessreviewscheduledefinition-update?view=graph-rest-1.0) methods to the [accessReviewScheduleDefinition](https://learn.microsoft.com/en-us/graph/api/resources/accessreviewscheduledefinition?view=graph-rest-1.0) resource.", + "Description": "Added the [create](https://learn.microsoft.com/en-us/graph/api/accessreviewset-post-definitions?view=graph-rest-1.0), [delete](https://learn.microsoft.com/en-us/graph/api/accessreviewscheduledefinition-delete?view=graph-rest-1.0), [get](https://learn.microsoft.com/en-us/graph/api/accessreviewscheduledefinition-get?view=graph-rest-1.0), **list**, [update](https://learn.microsoft.com/en-us/graph/api/accessreviewscheduledefinition-update?view=graph-rest-1.0) methods to the [accessReviewScheduleDefinition](https://learn.microsoft.com/en-us/graph/api/resources/accessreviewscheduledefinition?view=graph-rest-1.0) resource.", "Target": "accessReviewScheduleDefinition" } ], @@ -10987,7 +10987,7 @@ "ApiChange": "Resource", "ChangedApiName": "provisionOnDemand,synchronizationJob", "ChangeType": "Addition", - "Description": "Added the [provisionOnDemand](https://learn.microsoft.com/en-us/graph/api/synchronization-synchronizationjob-provision-on-demand?view=graph-rest-beta) method to the [synchronizationJob](https://learn.microsoft.com/en-us/graph/api/resources/synchronization-synchronizationJob?view=graph-rest-beta) resource", + "Description": "Added the **provisionOnDemand** method to the [synchronizationJob](https://learn.microsoft.com/en-us/graph/api/resources/synchronization-synchronizationJob?view=graph-rest-beta) resource", "Target": "provisionOnDemand,synchronizationJob" } ], @@ -11119,7 +11119,7 @@ "ApiChange": "Property", "ChangedApiName": "userPurpose", "ChangeType": "Addition", - "Description": "Added the new **userPurpose** property to [mailboxSettings](https://learn.microsoft.com/en-us/graph/api/resources/mailboxsettings?view=graph-rest-beta). See [userPurpose resource type](https://learn.microsoft.com/en-us/graph/api/resources/userPurpose?view=graph-rest-beta) for information on the supported use cases.", + "Description": "Added the new **userPurpose** property to [mailboxSettings](https://learn.microsoft.com/en-us/graph/api/resources/mailboxsettings?view=graph-rest-beta). See **userPurpose resource type** for information on the supported use cases.", "Target": "mailboxSettings,userPurpose resource type" }, { @@ -11127,7 +11127,7 @@ "ApiChange": "Resource", "ChangedApiName": "userPurpose", "ChangeType": "Addition", - "Description": "Added new [userPurpose](https://learn.microsoft.com/en-us/graph/api/resources/userPurpose?view=graph-rest-beta) complex type.", + "Description": "Added new **userPurpose** complex type.", "Target": "userPurpose" } ], @@ -12763,7 +12763,7 @@ "ApiChange": "Resource", "ChangedApiName": "appleIdentityProvider", "ChangeType": "Addition", - "Description": "To support configuring an Apple identity provider in Azure AD B2C tenant, introduced new resource type [appleIdentityProvider](https://learn.microsoft.com/en-us/graph/api/resources/appleidentityprovider?view=graph-rest-beta) entity.", + "Description": "To support configuring an Apple identity provider in Azure AD B2C tenant, introduced new resource type **appleIdentityProvider** entity.", "Target": "appleIdentityProvider" }, { @@ -12795,7 +12795,7 @@ "ApiChange": "Method", "ChangedApiName": "identityProviderBase", "ChangeType": "Addition", - "Description": "To support creating identity providers in an Azure AD and Azure AD B2C tenant, introduced [post](https://learn.microsoft.com/en-us/graph/api/identityproviderbase-post-identityproviders?view=graph-rest-beta) operation.", + "Description": "To support creating identity providers in an Azure AD and Azure AD B2C tenant, introduced **post** operation.", "Target": "identityProviderBase" }, { @@ -12803,7 +12803,7 @@ "ApiChange": "Method", "ChangedApiName": "identityProviderBase", "ChangeType": "Addition", - "Description": "To support listing all identity provider configurations in an Azure AD and Azure AD B2C tenant, introduced [list](https://learn.microsoft.com/en-us/graph/api/identityproviderbase-list?view=graph-rest-beta) operation.", + "Description": "To support listing all identity provider configurations in an Azure AD and Azure AD B2C tenant, introduced **list** operation.", "Target": "identityProviderBase" }, { diff --git a/changelog/Microsoft.EducationAssignment.json b/changelog/Microsoft.EducationAssignment.json index 371fc78dd9b..4a95f11e9d2 100644 --- a/changelog/Microsoft.EducationAssignment.json +++ b/changelog/Microsoft.EducationAssignment.json @@ -724,7 +724,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Addition", - "Description": "Added the [list](https://learn.microsoft.com/graph/api/educationassignment-list-gradingcategory?view=graph-rest-1.0) operation to the [educationAssignment](https://learn.microsoft.com/en-us/graph/api/resources/educationAssignment?view=graph-rest-1.0) resource.", + "Description": "Added the **list** operation to the [educationAssignment](https://learn.microsoft.com/en-us/graph/api/resources/educationAssignment?view=graph-rest-1.0) resource.", "Target": "educationAssignment" }, { @@ -756,7 +756,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Addition", - "Description": "Added the [list](https://learn.microsoft.com/graph/api/educationassignment-list-gradingcategory?view=graph-rest-1.0) operation to the [educationAssignmentSettings](https://learn.microsoft.com/en-us/graph/api/resources/educationassignmentsettings?view=graph-rest-1.0) resource.", + "Description": "Added the **list** operation to the [educationAssignmentSettings](https://learn.microsoft.com/en-us/graph/api/resources/educationassignmentsettings?view=graph-rest-1.0) resource.", "Target": "educationAssignmentSettings" }, { @@ -1138,7 +1138,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Addition", - "Description": "Added the [list](https://learn.microsoft.com/graph/api/educationassignment-list-gradingcategory?view=graph-rest-beta) operation to the [educationAssignment](https://learn.microsoft.com/en-us/graph/api/resources/educationAssignment?view=graph-rest-beta) resource.", + "Description": "Added the **list** operation to the [educationAssignment](https://learn.microsoft.com/en-us/graph/api/resources/educationAssignment?view=graph-rest-beta) resource.", "Target": "educationAssignment" }, { @@ -1170,7 +1170,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Addition", - "Description": "Added the [list](https://learn.microsoft.com/graph/api/educationassignment-list-gradingcategory?view=graph-rest-beta) operation to the [educationAssignmentSettings](https://learn.microsoft.com/en-us/graph/api/resources/educationassignmentsettings?view=graph-rest-beta) resource.", + "Description": "Added the **list** operation to the [educationAssignmentSettings](https://learn.microsoft.com/en-us/graph/api/resources/educationassignmentsettings?view=graph-rest-beta) resource.", "Target": "educationAssignmentSettings" }, { diff --git a/changelog/Microsoft.EducationDataSync.json b/changelog/Microsoft.EducationDataSync.json index 018146b34f0..5c9609cf1de 100644 --- a/changelog/Microsoft.EducationDataSync.json +++ b/changelog/Microsoft.EducationDataSync.json @@ -7,7 +7,7 @@ "ApiChange": "Permission", "ChangedApiName": "educationSynchronizationProfileList", "ChangeType": "Addition", - "Description": "Added support for application permissions to the [educationSynchronizationProfileList](https://learn.microsoft.com/en-us/graph/api/educationsynchronizationprofile-list?view=graph-rest-beta) resource.", + "Description": "Added support for application permissions to the **educationSynchronizationProfileList** resource.", "Target": "educationSynchronizationProfileList" }, { @@ -15,7 +15,7 @@ "ApiChange": "Permission", "ChangedApiName": "educationSynchronizationProfilePause", "ChangeType": "Addition", - "Description": "Added support for application permissions to the [educationSynchronizationProfilePause](https://learn.microsoft.com/en-us/graph/api/educationsynchronizationprofile-pause?view=graph-rest-beta) resource.", + "Description": "Added support for application permissions to the **educationSynchronizationProfilePause** resource.", "Target": "educationSynchronizationProfilePause" }, { @@ -23,7 +23,7 @@ "ApiChange": "Permission", "ChangedApiName": "educationSynchronizationProfileReset", "ChangeType": "Addition", - "Description": "Added support for application permissions to the [educationSynchronizationProfileReset](https://learn.microsoft.com/en-us/graph/api/educationsynchronizationprofile-reset?view=graph-rest-beta) resource.", + "Description": "Added support for application permissions to the **educationSynchronizationProfileReset** resource.", "Target": "educationSynchronizationProfileReset" }, { @@ -31,7 +31,7 @@ "ApiChange": "Permission", "ChangedApiName": "educationSynchronizationProfileResume", "ChangeType": "Addition", - "Description": "Added support for application permissions to the [educationSynchronizationProfileResume](https://learn.microsoft.com/en-us/graph/api/educationsynchronizationprofile-resume?view=graph-rest-beta) resource.", + "Description": "Added support for application permissions to the **educationSynchronizationProfileResume** resource.", "Target": "educationSynchronizationProfileResume" }, { @@ -39,7 +39,7 @@ "ApiChange": "Permission", "ChangedApiName": "educationSynchronizationProfileStart", "ChangeType": "Addition", - "Description": "Added support for application permissions to the [educationSynchronizationProfileStart](https://learn.microsoft.com/en-us/graph/api/educationsynchronizationprofile-start?view=graph-rest-beta) resource.", + "Description": "Added support for application permissions to the **educationSynchronizationProfileStart** resource.", "Target": "educationSynchronizationProfileStart" }, { @@ -47,7 +47,7 @@ "ApiChange": "Permission", "ChangedApiName": "educationSynchronizationProfileUploadUrl", "ChangeType": "Addition", - "Description": "Added support for application permissions to the [educationSynchronizationProfileUploadUrl](https://learn.microsoft.com/en-us/graph/api/educationsynchronizationprofile-uploadurl?view=graph-rest-beta) resource.", + "Description": "Added support for application permissions to the **educationSynchronizationProfileUploadUrl** resource.", "Target": "educationSynchronizationProfileUploadUrl" } ], @@ -65,7 +65,7 @@ "ApiChange": "Property", "ChangedApiName": "errorCount", "ChangeType": "Addition", - "Description": "Added new property **errorCount** to the [educationsynchronizationprofilestatus](https://learn.microsoft.com/en-us/graph/api/resources/educationsynchronizationprofilestatus?view=graph-rest-beta) resource.", + "Description": "Added new property **errorCount** to the **educationsynchronizationprofilestatus** resource.", "Target": "educationsynchronizationprofilestatus" }, { @@ -73,7 +73,7 @@ "ApiChange": "Property", "ChangedApiName": "statusMessage", "ChangeType": "Addition", - "Description": "Added new property **statusMessage** to the [educationsynchronizationprofilestatus](https://learn.microsoft.com/en-us/graph/api/resources/educationsynchronizationprofilestatus?view=graph-rest-beta) resource.", + "Description": "Added new property **statusMessage** to the **educationsynchronizationprofilestatus** resource.", "Target": "educationsynchronizationprofilestatus" }, { @@ -131,7 +131,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationCsvDataProvider", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationCsvDataProvider](https://learn.microsoft.com/en-us/graph/api/resources/educationCsvDataProvider?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationCsvDataProvider** resource.", "Target": "educationCsvDataProvider" }, { @@ -139,7 +139,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationFileSynchronizationVerificationMessage", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationFileSynchronizationVerificationMessage](https://learn.microsoft.com/en-us/graph/api/resources/educationFileSynchronizationVerificationMessage?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationFileSynchronizationVerificationMessage** resource.", "Target": "educationFileSynchronizationVerificationMessage" }, { @@ -147,7 +147,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationIdentityCreationConfiguration", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationIdentityCreationConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/educationIdentityCreationConfiguration?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationIdentityCreationConfiguration** resource.", "Target": "educationIdentityCreationConfiguration" }, { @@ -155,7 +155,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationIdentityDomain", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationIdentityDomain](https://learn.microsoft.com/en-us/graph/api/resources/educationIdentityDomain?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationIdentityDomain** resource.", "Target": "educationIdentityDomain" }, { @@ -163,7 +163,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationIdentityMatchingConfiguration", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationIdentityMatchingConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/educationIdentityMatchingConfiguration?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationIdentityMatchingConfiguration** resource.", "Target": "educationIdentityMatchingConfiguration" }, { @@ -171,7 +171,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationIdentityMatchingOptions", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationIdentityMatchingOptions](https://learn.microsoft.com/en-us/graph/api/resources/educationIdentityMatchingOptions?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationIdentityMatchingOptions** resource.", "Target": "educationIdentityMatchingOptions" }, { @@ -179,7 +179,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationIdentitySynchronizationConfiguration", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationIdentitySynchronizationConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/educationIdentitySynchronizationConfiguration?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationIdentitySynchronizationConfiguration** resource.", "Target": "educationIdentitySynchronizationConfiguration" }, { @@ -187,7 +187,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationOneRosterApiDataProvider", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationOneRosterApiDataProvider](https://learn.microsoft.com/en-us/graph/api/resources/educationOneRosterApiDataProvider?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationOneRosterApiDataProvider** resource.", "Target": "educationOneRosterApiDataProvider" }, { @@ -195,7 +195,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationPowerSchoolDataProvider", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationPowerSchoolDataProvider](https://learn.microsoft.com/en-us/graph/api/resources/educationPowerSchoolDataProvider?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationPowerSchoolDataProvider** resource.", "Target": "educationPowerSchoolDataProvider" }, { @@ -203,7 +203,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationConnectionSettings", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationConnectionSettings](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationConnectionSettings?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationSynchronizationConnectionSettings** resource.", "Target": "educationSynchronizationConnectionSettings" }, { @@ -211,7 +211,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationCustomization", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationCustomization](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationCustomization?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationSynchronizationCustomization** resource.", "Target": "educationSynchronizationCustomization" }, { @@ -219,7 +219,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationCustomizations", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationCustomizations](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationCustomizations?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationSynchronizationCustomizations** resource.", "Target": "educationSynchronizationCustomizations" }, { @@ -227,7 +227,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationDataProvider", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationDataProvider](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationDataProvider?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationSynchronizationDataProvider** resource.", "Target": "educationSynchronizationDataProvider" }, { @@ -235,7 +235,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationError", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationError](https://learn.microsoft.com/en-us/graph/api/resources/educationsynchronizationerror?view=graph-rest-beta) resource and a supported method.", + "Description": "Deprecated the **educationSynchronizationError** resource and a supported method.", "Target": "educationSynchronizationError" }, { @@ -243,7 +243,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationLicenseAssignment", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationLicenseAssignment](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationLicenseAssignment?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationSynchronizationLicenseAssignment** resource.", "Target": "educationSynchronizationLicenseAssignment" }, { @@ -251,7 +251,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationOAuth1ConnectionSettings", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationOAuth1ConnectionSettings](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationOAuth1ConnectionSettings?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationSynchronizationOAuth1ConnectionSettings** resource.", "Target": "educationSynchronizationOAuth1ConnectionSettings" }, { @@ -259,7 +259,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationOAuth2ClientCredentialsConnectionSettings", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationOAuth2ClientCredentialsConnectionSettings](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationOAuth2ClientCredentialsConnectionSettings?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationSynchronizationOAuth2ClientCredentialsConnectionSettings** resource.", "Target": "educationSynchronizationOAuth2ClientCredentialsConnectionSettings" }, { @@ -267,7 +267,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationProfile", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationProfile](https://learn.microsoft.com/en-us/graph/api/resources/educationsynchronizationprofile?view=graph-rest-beta) resource along with its supported methods and operations.", + "Description": "Deprecated the **educationSynchronizationProfile** resource along with its supported methods and operations.", "Target": "educationSynchronizationProfile" }, { @@ -275,7 +275,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationProfileStatus", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationProfileStatus](https://learn.microsoft.com/en-us/graph/api/resources/educationsynchronizationprofileStatus?view=graph-rest-beta) resource and a supported method.", + "Description": "Deprecated the **educationSynchronizationProfileStatus** resource and a supported method.", "Target": "educationSynchronizationProfileStatus" }, { @@ -485,7 +485,7 @@ "ApiChange": "Method", "ChangedApiName": "pause", "ChangeType": "Deletion", - "Description": "Removed the **pause** method from the [educationSynchronizationProfile](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationProfile?view=graph-rest-beta) resource.", + "Description": "Removed the **pause** method from the **educationSynchronizationProfile** resource.", "Target": "educationSynchronizationProfile" }, { @@ -493,7 +493,7 @@ "ApiChange": "Method", "ChangedApiName": "reset", "ChangeType": "Deletion", - "Description": "Removed the **reset** method from the [educationSynchronizationProfile](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationProfile?view=graph-rest-beta) resource.", + "Description": "Removed the **reset** method from the **educationSynchronizationProfile** resource.", "Target": "educationSynchronizationProfile" }, { @@ -501,7 +501,7 @@ "ApiChange": "Method", "ChangedApiName": "resume", "ChangeType": "Deletion", - "Description": "Removed the **resume** method from the [educationSynchronizationProfile](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationProfile?view=graph-rest-beta) resource.", + "Description": "Removed the **resume** method from the **educationSynchronizationProfile** resource.", "Target": "educationSynchronizationProfile" }, { @@ -509,7 +509,7 @@ "ApiChange": "Method", "ChangedApiName": "start", "ChangeType": "Deletion", - "Description": "Removed the **start** method from the [educationSynchronizationProfile](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationProfile?view=graph-rest-beta) resource.", + "Description": "Removed the **start** method from the **educationSynchronizationProfile** resource.", "Target": "educationSynchronizationProfile" }, { @@ -517,7 +517,7 @@ "ApiChange": "Method", "ChangedApiName": "uploadUrl", "ChangeType": "Deletion", - "Description": "Removed the **uploadUrl** method from the [educationSynchronizationProfile](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationProfile?view=graph-rest-beta) resource.", + "Description": "Removed the **uploadUrl** method from the **educationSynchronizationProfile** resource.", "Target": "educationSynchronizationProfile" } ], diff --git a/changelog/Microsoft.EnhancedRestore.json b/changelog/Microsoft.EnhancedRestore.json index 9d46ed50585..a9aecf4095a 100644 --- a/changelog/Microsoft.EnhancedRestore.json +++ b/changelog/Microsoft.EnhancedRestore.json @@ -219,7 +219,7 @@ "ApiChange": "Method", "ChangedApiName": "browse", "ChangeType": "Addition", - "Description": "Added the [browse](https://learn.microsoft.com/en-us/graph/api/browseSessionBase-browse?view=graph-rest-1.0) method to the [browseSessionBase](https://learn.microsoft.com/en-us/graph/api/resources/browseSessionBase?view=graph-rest-1.0) resource.", + "Description": "Added the **browse** method to the [browseSessionBase](https://learn.microsoft.com/en-us/graph/api/resources/browseSessionBase?view=graph-rest-1.0) resource.", "Target": "browseSessionBase" }, { @@ -227,7 +227,7 @@ "ApiChange": "Method", "ChangedApiName": "browse", "ChangeType": "Addition", - "Description": "Added the [browse](https://learn.microsoft.com/en-us/graph/api/browseSessionBase-browse?view=graph-rest-1.0) method to the [browseSessionBase](https://learn.microsoft.com/en-us/graph/api/resources/browseSessionBase?view=graph-rest-1.0) resource.", + "Description": "Added the **browse** method to the [browseSessionBase](https://learn.microsoft.com/en-us/graph/api/resources/browseSessionBase?view=graph-rest-1.0) resource.", "Target": "browseSessionBase" } ], @@ -2269,7 +2269,7 @@ "ApiChange": "Method", "ChangedApiName": "browse", "ChangeType": "Addition", - "Description": "Added the [browse](https://learn.microsoft.com/en-us/graph/api/browseSessionBase-browse?view=graph-rest-beta) method to the [browseSessionBase](https://learn.microsoft.com/en-us/graph/api/resources/browseSessionBase?view=graph-rest-beta) resource.", + "Description": "Added the **browse** method to the [browseSessionBase](https://learn.microsoft.com/en-us/graph/api/resources/browseSessionBase?view=graph-rest-beta) resource.", "Target": "browseSessionBase" } ], diff --git a/changelog/Microsoft.Exchange.Places.json b/changelog/Microsoft.Exchange.Places.json index a6f0d102e2d..ece6de4e5f7 100644 --- a/changelog/Microsoft.Exchange.Places.json +++ b/changelog/Microsoft.Exchange.Places.json @@ -591,7 +591,7 @@ "ApiChange": "Method", "ChangedApiName": "place", "ChangeType": "Addition", - "Description": "Added the [create](https://learn.microsoft.com/en-us/graph/api/place-create?view=graph-rest-beta) operation to the [place](https://learn.microsoft.com/en-us/graph/api/resources/place?view=graph-rest-beta) resource.", + "Description": "Added the **create** operation to the [place](https://learn.microsoft.com/en-us/graph/api/resources/place?view=graph-rest-beta) resource.", "Target": "place" }, { diff --git a/changelog/Microsoft.Exchange.json b/changelog/Microsoft.Exchange.json index 6b2f9dc7576..b2cc40f1446 100644 --- a/changelog/Microsoft.Exchange.json +++ b/changelog/Microsoft.Exchange.json @@ -785,7 +785,7 @@ "ApiChange": "Resource", "ChangedApiName": "userPurpose", "ChangeType": "Addition", - "Description": "Added the [userPurpose](https://learn.microsoft.com/en-us/graph/api/resources/userpurpose?view=graph-rest-1.0) resource type.", + "Description": "Added the **userPurpose** resource type.", "Target": "userPurpose" }, { diff --git a/changelog/Microsoft.IGAELM.json b/changelog/Microsoft.IGAELM.json index 3398dc36f69..51a94d18fc8 100644 --- a/changelog/Microsoft.IGAELM.json +++ b/changelog/Microsoft.IGAELM.json @@ -44,6 +44,144 @@ "WorkloadArea": "Identity and access", "SubArea": "Governance" }, + { + "ChangeList": [ + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Enumeration", + "ChangedApiName": "accessPackageSuggestionFilterByCurrentUserOptions", + "ChangeType": "Addition", + "Description": "Added the **accessPackageSuggestionFilterByCurrentUserOptions** enumeration type.", + "Target": "accessPackageSuggestionFilterByCurrentUserOptions" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Enumeration", + "ChangedApiName": "accessPackageSuggestionRelatedPeopleInsightLevel", + "ChangeType": "Addition", + "Description": "Added the **accessPackageSuggestionRelatedPeopleInsightLevel** enumeration type.", + "Target": "accessPackageSuggestionRelatedPeopleInsightLevel" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Enumeration", + "ChangedApiName": "approverInformationVisibility", + "ChangeType": "Addition", + "Description": "Added the **approverInformationVisibility** enumeration type.", + "Target": "approverInformationVisibility" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Property", + "ChangedApiName": "approverInformationVisibility", + "ChangeType": "Addition", + "Description": "Added the **approverInformationVisibility** property to the [accessPackageApprovalStage](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageApprovalStage?view=graph-rest-1.0) resource.", + "Target": "accessPackageApprovalStage" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Resource", + "ChangedApiName": "accessPackageSuggestionReason", + "ChangeType": "Addition", + "Description": "Added the [accessPackageSuggestionReason](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageSuggestionReason?view=graph-rest-1.0) resource.", + "Target": "accessPackageSuggestionReason" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Resource", + "ChangedApiName": "accessPackageSuggestionRelatedPeopleBased", + "ChangeType": "Addition", + "Description": "Added the [accessPackageSuggestionRelatedPeopleBased](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageSuggestionRelatedPeopleBased?view=graph-rest-1.0) resource.", + "Target": "accessPackageSuggestionRelatedPeopleBased" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Resource", + "ChangedApiName": "accessPackageSuggestionSelfAssignmentHistoryBased", + "ChangeType": "Addition", + "Description": "Added the [accessPackageSuggestionSelfAssignmentHistoryBased](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageSuggestionSelfAssignmentHistoryBased?view=graph-rest-1.0) resource.", + "Target": "accessPackageSuggestionSelfAssignmentHistoryBased" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Resource", + "ChangedApiName": "identity", + "ChangeType": "Addition", + "Description": "Added the [identity](https://learn.microsoft.com/en-us/graph/api/resources/identity?view=graph-rest-1.0) resource.", + "Target": "identity" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Resource", + "ChangedApiName": "accessPackageSuggestion", + "ChangeType": "Addition", + "Description": "Added the [accessPackageSuggestion](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageSuggestion?view=graph-rest-1.0) resource.", + "Target": "accessPackageSuggestion" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Resource", + "ChangedApiName": "availableAccessPackage", + "ChangeType": "Addition", + "Description": "Added the [availableAccessPackage](https://learn.microsoft.com/en-us/graph/api/resources/availableAccessPackage?view=graph-rest-1.0) resource.", + "Target": "availableAccessPackage" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Resource", + "ChangedApiName": "controlConfiguration", + "ChangeType": "Addition", + "Description": "Added the [controlConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/controlConfiguration?view=graph-rest-1.0) resource.", + "Target": "controlConfiguration" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Resource", + "ChangedApiName": "endUserSettings", + "ChangeType": "Addition", + "Description": "Added the [endUserSettings](https://learn.microsoft.com/en-us/graph/api/resources/endUserSettings?view=graph-rest-1.0) resource.", + "Target": "endUserSettings" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Relationship", + "ChangedApiName": "accessPackageSuggestions", + "ChangeType": "Addition", + "Description": "Added the **accessPackageSuggestions** relationship to the [entitlementManagement](https://learn.microsoft.com/en-us/graph/api/resources/entitlementManagement?view=graph-rest-1.0) resource.", + "Target": "entitlementManagement" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Relationship", + "ChangedApiName": "availableAccessPackages", + "ChangeType": "Addition", + "Description": "Added the **availableAccessPackages** relationship to the [entitlementManagement](https://learn.microsoft.com/en-us/graph/api/resources/entitlementManagement?view=graph-rest-1.0) resource.", + "Target": "entitlementManagement" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Relationship", + "ChangedApiName": "controlConfigurations", + "ChangeType": "Addition", + "Description": "Added the **controlConfigurations** relationship to the [entitlementManagement](https://learn.microsoft.com/en-us/graph/api/resources/entitlementManagement?view=graph-rest-1.0) resource.", + "Target": "entitlementManagement" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Method", + "ChangedApiName": "filterByCurrentUser", + "ChangeType": "Addition", + "Description": "Added the [filterByCurrentUser](https://learn.microsoft.com/en-us/graph/api/accesspackagesuggestions-filterbycurrentuser?view=graph-rest-1.0) method to the [accessPackageSuggestion](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageSuggestion?view=graph-rest-1.0) resource.", + "Target": "accessPackageSuggestion" + } + ], + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "Cloud": "Prod", + "Version": "v1.0", + "CreatedDateTime": "2026-06-18T20:13:08.3813013Z", + "WorkloadArea": "Identity and access", + "SubArea": "Governance" + }, { "ChangeList": [ { @@ -132,6 +270,32 @@ "WorkloadArea": "Identity and access", "SubArea": "Governance" }, + { + "ChangeList": [ + { + "Id": "b26be12a-1a52-489f-b223-dc9d2b0a8c31", + "ApiChange": "Enumeration", + "ChangedApiName": "roleType", + "ChangeType": "Addition", + "Description": "Added the **roleType** enumeration type.", + "Target": "roleType" + }, + { + "Id": "b26be12a-1a52-489f-b223-dc9d2b0a8c31", + "ApiChange": "Property", + "ChangedApiName": "type", + "ChangeType": "Addition", + "Description": "Added the **type** property to the [accessPackageResourceRole](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageResourceRole?view=graph-rest-1.0) resource.", + "Target": "accessPackageResourceRole" + } + ], + "Id": "b26be12a-1a52-489f-b223-dc9d2b0a8c31", + "Cloud": "Prod", + "Version": "v1.0", + "CreatedDateTime": "2026-06-18T14:46:42.7323209Z", + "WorkloadArea": "Identity and access", + "SubArea": "Governance" + }, { "ChangeList": [ { @@ -251,7 +415,7 @@ "ApiChange": "Method", "ChangedApiName": "filterByCurrentUser", "ChangeType": "Addition", - "Description": "Added the [filterByCurrentUser](https://learn.microsoft.com/en-us/graph/api/accessPackageSuggestion-filterByCurrentUser?view=graph-rest-beta) method to the [accessPackageSuggestion](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageSuggestion?view=graph-rest-beta) resource.", + "Description": "Added the **filterByCurrentUser** method to the [accessPackageSuggestion](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageSuggestion?view=graph-rest-beta) resource.", "Target": "accessPackageSuggestion" } ], diff --git a/changelog/Microsoft.M365.Defender.json b/changelog/Microsoft.M365.Defender.json index 6d40f15555f..d1a9b3fffe7 100644 --- a/changelog/Microsoft.M365.Defender.json +++ b/changelog/Microsoft.M365.Defender.json @@ -1,6 +1,648 @@ { "changelog": [ { + "ChangeList": [ + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Enumeration", + "ChangedApiName": "detectionRuleStatus", + "ChangeType": "Addition", + "Description": "Added the **detectionRuleStatus** enumeration type.", + "Target": "detectionRuleStatus" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "accountObjectIdAction", + "ChangeType": "Addition", + "Description": "Added the [accountObjectIdAction](https://learn.microsoft.com/en-us/graph/api/resources/security-accountObjectIdAction?view=graph-rest-beta) resource.", + "Target": "accountObjectIdAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "accountSidAction", + "ChangeType": "Addition", + "Description": "Added the [accountSidAction](https://learn.microsoft.com/en-us/graph/api/resources/security-accountSidAction?view=graph-rest-beta) resource.", + "Target": "accountSidAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "alertCustomDetails", + "ChangeType": "Addition", + "Description": "Added the [alertCustomDetails](https://learn.microsoft.com/en-us/graph/api/resources/security-alertCustomDetails?view=graph-rest-beta) resource.", + "Target": "alertCustomDetails" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "alertTemplate", + "ChangeType": "Deletion", + "Description": "Removed the **alertTemplate** resource.", + "Target": "alertTemplate" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "allowFileResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [allowFileResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-allowFileResponseAction?view=graph-rest-beta) resource.", + "Target": "allowFileResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "automatedAction", + "ChangeType": "Addition", + "Description": "Added the [automatedAction](https://learn.microsoft.com/en-us/graph/api/resources/security-automatedAction?view=graph-rest-beta) resource.", + "Target": "automatedAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "automatedActionSet", + "ChangeType": "Addition", + "Description": "Added the [automatedActionSet](https://learn.microsoft.com/en-us/graph/api/resources/security-automatedActionSet?view=graph-rest-beta) resource.", + "Target": "automatedActionSet" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "blockFileResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [blockFileResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-blockFileResponseAction?view=graph-rest-beta) resource.", + "Target": "blockFileResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "collectInvestigationPackageResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [collectInvestigationPackageResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-collectInvestigationPackageResponseAction?view=graph-rest-beta) resource.", + "Target": "collectInvestigationPackageResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "detectionAction", + "ChangeType": "Deletion", + "Description": "Removed the **detectionAction** resource.", + "Target": "detectionAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "deviceAction", + "ChangeType": "Addition", + "Description": "Added the [deviceAction](https://learn.microsoft.com/en-us/graph/api/resources/security-deviceAction?view=graph-rest-beta) resource.", + "Target": "deviceAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "disableUserResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [disableUserResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-disableUserResponseAction?view=graph-rest-beta) resource.", + "Target": "disableUserResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "emailAction", + "ChangeType": "Addition", + "Description": "Added the [emailAction](https://learn.microsoft.com/en-us/graph/api/resources/security-emailAction?view=graph-rest-beta) resource.", + "Target": "emailAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "fileAction", + "ChangeType": "Addition", + "Description": "Added the [fileAction](https://learn.microsoft.com/en-us/graph/api/resources/security-fileAction?view=graph-rest-beta) resource.", + "Target": "fileAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "forceUserPasswordResetResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [forceUserPasswordResetResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-forceUserPasswordResetResponseAction?view=graph-rest-beta) resource.", + "Target": "forceUserPasswordResetResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "hardDeleteResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [hardDeleteResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-hardDeleteResponseAction?view=graph-rest-beta) resource.", + "Target": "hardDeleteResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "impactedAsset", + "ChangeType": "Deprecation", + "Description": "Deprecated the [impactedAsset](https://learn.microsoft.com/en-us/graph/api/resources/security-impactedAsset?view=graph-rest-beta) resource.", + "Target": "impactedAsset" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "impactedDeviceAsset", + "ChangeType": "Deprecation", + "Description": "Deprecated the [impactedDeviceAsset](https://learn.microsoft.com/en-us/graph/api/resources/security-impactedDeviceAsset?view=graph-rest-beta) resource.", + "Target": "impactedDeviceAsset" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "impactedMailboxAsset", + "ChangeType": "Deprecation", + "Description": "Deprecated the [impactedMailboxAsset](https://learn.microsoft.com/en-us/graph/api/resources/security-impactedMailboxAsset?view=graph-rest-beta) resource.", + "Target": "impactedMailboxAsset" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "impactedUserAsset", + "ChangeType": "Deprecation", + "Description": "Deprecated the [impactedUserAsset](https://learn.microsoft.com/en-us/graph/api/resources/security-impactedUserAsset?view=graph-rest-beta) resource.", + "Target": "impactedUserAsset" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "initiateInvestigationResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [initiateInvestigationResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-initiateInvestigationResponseAction?view=graph-rest-beta) resource.", + "Target": "initiateInvestigationResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "isolateDeviceAction", + "ChangeType": "Addition", + "Description": "Added the [isolateDeviceAction](https://learn.microsoft.com/en-us/graph/api/resources/security-isolateDeviceAction?view=graph-rest-beta) resource.", + "Target": "isolateDeviceAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "isolateDeviceResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [isolateDeviceResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-isolateDeviceResponseAction?view=graph-rest-beta) resource.", + "Target": "isolateDeviceResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "markUserAsCompromisedResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [markUserAsCompromisedResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-markUserAsCompromisedResponseAction?view=graph-rest-beta) resource.", + "Target": "markUserAsCompromisedResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "mitreTactic", + "ChangeType": "Addition", + "Description": "Added the [mitreTactic](https://learn.microsoft.com/en-us/graph/api/resources/security-mitreTactic?view=graph-rest-beta) resource.", + "Target": "mitreTactic" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "mitreTechnique", + "ChangeType": "Addition", + "Description": "Added the [mitreTechnique](https://learn.microsoft.com/en-us/graph/api/resources/security-mitreTechnique?view=graph-rest-beta) resource.", + "Target": "mitreTechnique" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "moveToDeletedItemsResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [moveToDeletedItemsResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-moveToDeletedItemsResponseAction?view=graph-rest-beta) resource.", + "Target": "moveToDeletedItemsResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "moveToInboxResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [moveToInboxResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-moveToInboxResponseAction?view=graph-rest-beta) resource.", + "Target": "moveToInboxResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "moveToJunkResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [moveToJunkResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-moveToJunkResponseAction?view=graph-rest-beta) resource.", + "Target": "moveToJunkResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "deviceGroups", + "ChangeType": "Addition", + "Description": "Added the **deviceGroups** property to the [organizationalScope](https://learn.microsoft.com/en-us/graph/api/resources/security-organizationalScope?view=graph-rest-beta) resource.", + "Target": "organizationalScope" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "organizationalScope", + "ChangeType": "Deprecation", + "Description": "Deprecated the [organizationalScope](https://learn.microsoft.com/en-us/graph/api/resources/security-organizationalScope?view=graph-rest-beta) resource.", + "Target": "organizationalScope" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "organizationalScope", + "ChangeType": "Deprecation", + "Description": "Deprecated the [organizationalScope](https://learn.microsoft.com/en-us/graph/api/resources/security-organizationalScope?view=graph-rest-beta) resource.", + "Target": "organizationalScope" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "queryCondition", + "ChangeType": "Deprecation", + "Description": "Deprecated the [queryCondition](https://learn.microsoft.com/en-us/graph/api/resources/security-queryCondition?view=graph-rest-beta) resource.", + "Target": "queryCondition" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "responseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [responseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-responseAction?view=graph-rest-beta) resource.", + "Target": "responseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "restrictAppExecutionResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [restrictAppExecutionResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-restrictAppExecutionResponseAction?view=graph-rest-beta) resource.", + "Target": "restrictAppExecutionResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "frequency", + "ChangeType": "Addition", + "Description": "Added the **frequency** property to the [ruleSchedule](https://learn.microsoft.com/en-us/graph/api/resources/security-ruleSchedule?view=graph-rest-beta) resource.", + "Target": "ruleSchedule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "ruleSchedule", + "ChangeType": "Deprecation", + "Description": "Deprecated the [ruleSchedule](https://learn.microsoft.com/en-us/graph/api/resources/security-ruleSchedule?view=graph-rest-beta) resource.", + "Target": "ruleSchedule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "ruleSchedule", + "ChangeType": "Deprecation", + "Description": "Deprecated the [ruleSchedule](https://learn.microsoft.com/en-us/graph/api/resources/security-ruleSchedule?view=graph-rest-beta) resource.", + "Target": "ruleSchedule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "runAntivirusScanResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [runAntivirusScanResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-runAntivirusScanResponseAction?view=graph-rest-beta) resource.", + "Target": "runAntivirusScanResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "runDetails", + "ChangeType": "Deprecation", + "Description": "Deprecated the [runDetails](https://learn.microsoft.com/en-us/graph/api/resources/security-runDetails?view=graph-rest-beta) resource.", + "Target": "runDetails" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "softDeleteResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [softDeleteResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-softDeleteResponseAction?view=graph-rest-beta) resource.", + "Target": "softDeleteResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "stopAndQuarantineFileAction", + "ChangeType": "Addition", + "Description": "Added the [stopAndQuarantineFileAction](https://learn.microsoft.com/en-us/graph/api/resources/security-stopAndQuarantineFileAction?view=graph-rest-beta) resource.", + "Target": "stopAndQuarantineFileAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "stopAndQuarantineFileResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [stopAndQuarantineFileResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-stopAndQuarantineFileResponseAction?view=graph-rest-beta) resource.", + "Target": "stopAndQuarantineFileResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "accountEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [accountEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-accountEntityMapping?view=graph-rest-beta) resource.", + "Target": "accountEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "alertTemplate", + "ChangeType": "Addition", + "Description": "Added the [alertTemplate](https://learn.microsoft.com/en-us/graph/api/resources/security-alertTemplate?view=graph-rest-beta) resource.", + "Target": "alertTemplate" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "amazonResourceEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [amazonResourceEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-amazonResourceEntityMapping?view=graph-rest-beta) resource.", + "Target": "amazonResourceEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "azureResourceEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [azureResourceEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-azureResourceEntityMapping?view=graph-rest-beta) resource.", + "Target": "azureResourceEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "cloudApplicationEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [cloudApplicationEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-cloudApplicationEntityMapping?view=graph-rest-beta) resource.", + "Target": "cloudApplicationEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "detectionAction", + "ChangeType": "Addition", + "Description": "Added the [detectionAction](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionAction?view=graph-rest-beta) resource.", + "Target": "detectionAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "createdBy", + "ChangeType": "Addition", + "Description": "Added the **createdBy** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "createdDateTime", + "ChangeType": "Addition", + "Description": "Added the **createdDateTime** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "description", + "ChangeType": "Addition", + "Description": "Added the **description** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "detectionAction", + "ChangeType": "Deletion", + "Description": "Removed the **detectionAction** property from the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "detectionRule", + "ChangeType": "Deprecation", + "Description": "Deprecated the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "displayName", + "ChangeType": "Addition", + "Description": "Added the **displayName** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "id", + "ChangeType": "Addition", + "Description": "Added the **id** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "isEnabled", + "ChangeType": "Addition", + "Description": "Added the **isEnabled** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "lastModifiedBy", + "ChangeType": "Addition", + "Description": "Added the **lastModifiedBy** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "lastModifiedDateTime", + "ChangeType": "Addition", + "Description": "Added the **lastModifiedDateTime** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "detectionRule", + "ChangeType": "Deprecation", + "Description": "Deprecated the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "status", + "ChangeType": "Addition", + "Description": "Added the **status** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Relationship", + "ChangedApiName": "detectionAction", + "ChangeType": "Addition", + "Description": "Added the **detectionAction** relationship to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "dnsEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [dnsEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-dnsEntityMapping?view=graph-rest-beta) resource.", + "Target": "dnsEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "entityMapping", + "ChangeType": "Addition", + "Description": "Added the [entityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-entityMapping?view=graph-rest-beta) resource.", + "Target": "entityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "entityMappingConfiguration", + "ChangeType": "Addition", + "Description": "Added the [entityMappingConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-entityMappingConfiguration?view=graph-rest-beta) resource.", + "Target": "entityMappingConfiguration" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "fileEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [fileEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-fileEntityMapping?view=graph-rest-beta) resource.", + "Target": "fileEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "googleCloudResourceEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [googleCloudResourceEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-googleCloudResourceEntityMapping?view=graph-rest-beta) resource.", + "Target": "googleCloudResourceEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "hostEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [hostEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-hostEntityMapping?view=graph-rest-beta) resource.", + "Target": "hostEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "ipEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [ipEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-ipEntityMapping?view=graph-rest-beta) resource.", + "Target": "ipEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "mailboxEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [mailboxEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-mailboxEntityMapping?view=graph-rest-beta) resource.", + "Target": "mailboxEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "mailClusterEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [mailClusterEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-mailClusterEntityMapping?view=graph-rest-beta) resource.", + "Target": "mailClusterEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "mailMessageEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [mailMessageEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-mailMessageEntityMapping?view=graph-rest-beta) resource.", + "Target": "mailMessageEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "oAuthApplicationEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [oAuthApplicationEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-oAuthApplicationEntityMapping?view=graph-rest-beta) resource.", + "Target": "oAuthApplicationEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "processEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [processEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-processEntityMapping?view=graph-rest-beta) resource.", + "Target": "processEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "protectionRule", + "ChangeType": "Deletion", + "Description": "Removed the **protectionRule** resource.", + "Target": "protectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "registryValueEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [registryValueEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-registryValueEntityMapping?view=graph-rest-beta) resource.", + "Target": "registryValueEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "securityGroupEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [securityGroupEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-securityGroupEntityMapping?view=graph-rest-beta) resource.", + "Target": "securityGroupEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "urlEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [urlEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-urlEntityMapping?view=graph-rest-beta) resource.", + "Target": "urlEntityMapping" + } + ], + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-17T09:12:53.9791702Z", + "WorkloadArea": "Security", + "SubArea": "" + }, + { "ChangeList": [ { "Id": "41ef4b19-6726-4902-bd04-b860fdfee83a", diff --git a/changelog/Microsoft.M365.XTAP.json b/changelog/Microsoft.M365.XTAP.json index ab6afc04ba7..04d49a07a09 100644 --- a/changelog/Microsoft.M365.XTAP.json +++ b/changelog/Microsoft.M365.XTAP.json @@ -47,7 +47,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Addition", - "Description": "Added the [List m365Capabilities](/graph/api/crosstenantaccesspolicyconfigurationdefault-list-m365capabilities?view=graph-rest-beta) method to the [crossTenantAccessPolicyConfigurationDefault](/graph/api/resources/crossTenantAccessPolicyConfigurationDefault?view=graph-rest-beta) resource.", + "Description": "Added the **List m365Capabilities** method to the **crossTenantAccessPolicyConfigurationDefault** resource.", "Target": "crossTenantAccessPolicyConfigurationDefault" }, { @@ -55,7 +55,7 @@ "ApiChange": "Method", "ChangedApiName": "POST", "ChangeType": "Addition", - "Description": "Added the [Create m365CapabilityBase](/graph/api/crosstenantaccesspolicyconfigurationdefault-post-m365capabilities?view=graph-rest-beta) method to the [crossTenantAccessPolicyConfigurationDefault](/graph/api/resources/crossTenantAccessPolicyConfigurationDefault?view=graph-rest-beta) resource.", + "Description": "Added the **Create m365CapabilityBase** method to the **crossTenantAccessPolicyConfigurationDefault** resource.", "Target": "crossTenantAccessPolicyConfigurationDefault" }, { @@ -63,7 +63,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Addition", - "Description": "Added the [List m365Capabilities](/graph/api/crosstenantaccesspolicyconfigurationpartner-list-m365capabilities?view=graph-rest-beta) method to the [crossTenantAccessPolicyConfigurationPartner](/graph/api/resources/crossTenantAccessPolicyConfigurationPartner?view=graph-rest-beta) resource.", + "Description": "Added the **List m365Capabilities** method to the **crossTenantAccessPolicyConfigurationPartner** resource.", "Target": "crossTenantAccessPolicyConfigurationPartner" }, { @@ -71,7 +71,7 @@ "ApiChange": "Method", "ChangedApiName": "POST", "ChangeType": "Addition", - "Description": "Added the [Create m365CapabilityBase](/graph/api/crosstenantaccesspolicyconfigurationpartner-post-m365capabilities?view=graph-rest-beta) method to the [crossTenantAccessPolicyConfigurationPartner](/graph/api/resources/crossTenantAccessPolicyConfigurationPartner?view=graph-rest-beta) resource.", + "Description": "Added the **Create m365CapabilityBase** method to the **crossTenantAccessPolicyConfigurationPartner** resource.", "Target": "crossTenantAccessPolicyConfigurationPartner" }, { diff --git a/changelog/Microsoft.MCIEM.PermissionsAnalytics.json b/changelog/Microsoft.MCIEM.PermissionsAnalytics.json index 24278e0c619..6317fb5aa5c 100644 --- a/changelog/Microsoft.MCIEM.PermissionsAnalytics.json +++ b/changelog/Microsoft.MCIEM.PermissionsAnalytics.json @@ -7,7 +7,7 @@ "ApiChange": "Relationship", "ChangedApiName": "permissionsManagement", "ChangeType": "Deprecated", - "Description": "Deprecated the **permissionsManagement** relationship of the [identityGovernance](https://learn.microsoft.com/en-us/graph/api/resources/identitygovernance?view=graph-rest-beta) resource. This deprecation applies to all Microsoft Entra Permissions Management APIs. More information can be found [here](https://aka.ms/MEPMretire).", + "Description": "Deprecated the **permissionsManagement** relationship of the [identityGovernance](https://learn.microsoft.com/en-us/graph/api/resources/identitygovernance?view=graph-rest-beta) resource. This deprecation applies to all Microsoft Entra Permissions Management APIs. More information can be found **here**.", "Target": "identityGovernance" }, { @@ -15,7 +15,7 @@ "ApiChange": "Relationship", "ChangedApiName": "permissionsAnalytics", "ChangeType": "Deprecated", - "Description": "Deprecated the **permissionsAnalytics** relationship of the [identityGovernance](https://learn.microsoft.com/en-us/graph/api/resources/identitygovernance?view=graph-rest-beta) resource. This deprecation applies to all Microsoft Entra Permissions Management APIs. More information can be found [here](https://aka.ms/MEPMretire).", + "Description": "Deprecated the **permissionsAnalytics** relationship of the [identityGovernance](https://learn.microsoft.com/en-us/graph/api/resources/identitygovernance?view=graph-rest-beta) resource. This deprecation applies to all Microsoft Entra Permissions Management APIs. More information can be found **here**.", "Target": "identityGovernance" } ], diff --git a/changelog/Microsoft.Office.Tasks.json b/changelog/Microsoft.Office.Tasks.json index aa96e4d836c..8761bced70d 100644 --- a/changelog/Microsoft.Office.Tasks.json +++ b/changelog/Microsoft.Office.Tasks.json @@ -1,5 +1,79 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Enumeration", + "ChangedApiName": "historyEntityType", + "ChangeType": "Addition", + "Description": "Added the **historyEntityType** enumeration type.", + "Target": "historyEntityType" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Enumeration", + "ChangedApiName": "historyEventType", + "ChangeType": "Addition", + "Description": "Added the **historyEventType** enumeration type.", + "Target": "historyEventType" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Member", + "ChangedApiName": "completionInHostedApp", + "ChangeType": "Addition", + "Description": "Added the `completionInHostedApp` member to the **plannerTaskCompletionRequirements** enumeration.", + "Target": "plannerTaskCompletionRequirements" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Resource", + "ChangedApiName": "plannerTaskData", + "ChangeType": "Addition", + "Description": "Added the [plannerTaskData](https://learn.microsoft.com/en-us/graph/api/resources/plannerTaskData?view=graph-rest-beta) resource.", + "Target": "plannerTaskData" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Resource", + "ChangedApiName": "plannerTaskDetailsData", + "ChangeType": "Addition", + "Description": "Added the [plannerTaskDetailsData](https://learn.microsoft.com/en-us/graph/api/resources/plannerTaskDetailsData?view=graph-rest-beta) resource.", + "Target": "plannerTaskDetailsData" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Resource", + "ChangedApiName": "plannerHistoryItem", + "ChangeType": "Addition", + "Description": "Added the [plannerHistoryItem](https://learn.microsoft.com/en-us/graph/api/resources/plannerHistoryItem?view=graph-rest-beta) resource and an associated method.", + "Target": "plannerHistoryItem" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Relationship", + "ChangedApiName": "historyItems", + "ChangeType": "Addition", + "Description": "Added the **historyItems** relationship to the [plannerPlan](https://learn.microsoft.com/en-us/graph/api/resources/plannerPlan?view=graph-rest-beta) resource.", + "Target": "plannerPlan" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Resource", + "ChangedApiName": "taskHistoryItem", + "ChangeType": "Addition", + "Description": "Added the [taskHistoryItem](https://learn.microsoft.com/en-us/graph/api/resources/taskHistoryItem?view=graph-rest-beta) resource.", + "Target": "taskHistoryItem" + } + ], + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-19T07:35:12.7210574Z", + "WorkloadArea": "Tasks and plans", + "SubArea": "" + }, { "ChangeList": [ { diff --git a/changelog/Microsoft.OfficeGraph.json b/changelog/Microsoft.OfficeGraph.json index 1276fcb33b8..7e92a65ab63 100644 --- a/changelog/Microsoft.OfficeGraph.json +++ b/changelog/Microsoft.OfficeGraph.json @@ -7,7 +7,7 @@ "ApiChange": "Method", "ChangedApiName": "sharedInsight", "ChangeType": "Deprecation", - "Description": "Deprecated the [List shared](https://learn.microsoft.com/en-us/graph/api/insights-list-shared?view=graph-rest-beta) method of the [sharedInsight](https://learn.microsoft.com/en-us/graph/api/resources/sharedInsight?view=graph-rest-beta) resource. This API is deprecated and will stop returning data after November, 2026.", + "Description": "Deprecated the [List shared](https://learn.microsoft.com/en-us/graph/api/insights-list-shared?view=graph-rest-beta) method of the **sharedInsight** resource. This API is deprecated and will stop returning data after November, 2026.", "Target": "sharedInsight" }, { @@ -15,7 +15,7 @@ "ApiChange": "Method", "ChangedApiName": "usedInsight", "ChangeType": "Deprecation", - "Description": "Deprecated the [List used](https://learn.microsoft.com/en-us/graph/api/insights-list-used?view=graph-rest-beta) method of the [usedInsight](https://learn.microsoft.com/en-us/graph/api/resources/usedInsight?view=graph-rest-beta) resource. This API is deprecated and will stop returning data after November, 2026.", + "Description": "Deprecated the [List used](https://learn.microsoft.com/en-us/graph/api/insights-list-used?view=graph-rest-beta) method of the **usedInsight** resource. This API is deprecated and will stop returning data after November, 2026.", "Target": "usedInsight" } ], @@ -33,7 +33,7 @@ "ApiChange": "Method", "ChangedApiName": "sharedInsight", "ChangeType": "Deprecation", - "Description": "Deprecated the [List shared](https://learn.microsoft.com/en-us/graph/api/insights-list-shared?view=graph-rest-1.0) method of the [sharedInsight](https://learn.microsoft.com/en-us/graph/api/resources/sharedInsight?view=graph-rest-1.0) resource. This API is deprecated and will stop returning data after November, 2026.", + "Description": "Deprecated the [List shared](https://learn.microsoft.com/en-us/graph/api/insights-list-shared?view=graph-rest-1.0) method of the **sharedInsight** resource. This API is deprecated and will stop returning data after November, 2026.", "Target": "sharedInsight" }, { @@ -41,7 +41,7 @@ "ApiChange": "Method", "ChangedApiName": "usedInsight", "ChangeType": "Deprecation", - "Description": "Deprecated the [List used](https://learn.microsoft.com/en-us/graph/api/insights-list-used?view=graph-rest-1.0) method of the [usedInsight](https://learn.microsoft.com/en-us/graph/api/resources/usedInsight?view=graph-rest-1.0) resource. This API is deprecated and will stop returning data after November, 2026.", + "Description": "Deprecated the [List used](https://learn.microsoft.com/en-us/graph/api/insights-list-used?view=graph-rest-1.0) method of the **usedInsight** resource. This API is deprecated and will stop returning data after November, 2026.", "Target": "usedInsight" } ], diff --git a/changelog/Microsoft.People.json b/changelog/Microsoft.People.json index 9f7bb319f29..ebf841870a1 100644 --- a/changelog/Microsoft.People.json +++ b/changelog/Microsoft.People.json @@ -389,7 +389,7 @@ "ApiChange": "Method", "ChangedApiName": "POST", "ChangeType": "Addition", - "Description": "Added the [Create](https://learn.microsoft.com/en-us/graph/api/peopleadminsettings-post-photoupdatesettings?view=graph-rest-beta) method to the [peopleAdminSettings](https://learn.microsoft.com/en-us/graph/api/resources/peopleadminsettings?view=graph-rest-beta) resource.", + "Description": "Added the **Create** method to the [peopleAdminSettings](https://learn.microsoft.com/en-us/graph/api/resources/peopleadminsettings?view=graph-rest-beta) resource.", "Target": "peopleAdminSettings" }, { @@ -397,7 +397,7 @@ "ApiChange": "Method", "ChangedApiName": "DELETE", "ChangeType": "Addition", - "Description": "Added the [Delete](https://learn.microsoft.com/en-us/graph/api/peopleadminsettings-delete-photoupdatesettings?view=graph-rest-beta) method to the [peopleAdminSettings](https://learn.microsoft.com/en-us/graph/api/resources/peopleadminsettings?view=graph-rest-beta) resource.", + "Description": "Added the **Delete** method to the [peopleAdminSettings](https://learn.microsoft.com/en-us/graph/api/resources/peopleadminsettings?view=graph-rest-beta) resource.", "Target": "peopleAdminSettings" } ], @@ -803,7 +803,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Addition", - "Description": "Added the [list](https://learn.microsoft.com/en-us/graph/api/organizationsettings-list-pronounssettings?view=graph-rest-beta&tabs=http) operation to the [pronounsSettings](https://learn.microsoft.com/en-us/graph/api/resources/pronounssettings?view=graph-rest-beta) resource", + "Description": "Added the **list** operation to the [pronounsSettings](https://learn.microsoft.com/en-us/graph/api/resources/pronounssettings?view=graph-rest-beta) resource", "Target": "pronounsSettings" }, { @@ -861,7 +861,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Deletion", - "Description": "Removed the [list](https://learn.microsoft.com/en-us/graph/api/organizationsettings-list-pronounssettings?view=graph-rest-beta&tabs=http) operation from the [pronounsSettings](https://learn.microsoft.com/en-us/graph/api/resources/pronounssettings?view=graph-rest-beta) resource", + "Description": "Removed the **list** operation from the [pronounsSettings](https://learn.microsoft.com/en-us/graph/api/resources/pronounssettings?view=graph-rest-beta) resource", "Target": "pronounsSettings" }, { diff --git a/changelog/Microsoft.Search.json b/changelog/Microsoft.Search.json index af6c1b02f05..d15e9d1278d 100644 --- a/changelog/Microsoft.Search.json +++ b/changelog/Microsoft.Search.json @@ -405,7 +405,7 @@ "ApiChange": "Property", "ChangedApiName": "state", "ChangeType": "Addition", - "Description": "Added the **state** property to the [externalConnection](https://learn.microsoft.com/en-us/graph/api/resources/externalconnection?view=graph-rest-beta) resource.", + "Description": "Added the **state** property to the **externalConnection** resource.", "Target": "externalConnection" }, { @@ -413,7 +413,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalGroup", "ChangeType": "Addition", - "Description": "Added the [externalGroup](https://learn.microsoft.com/en-us/graph/api/resources/externalgroup?view=graph-rest-beta) resource.", + "Description": "Added the **externalGroup** resource.", "Target": "externalGroup" }, { @@ -421,7 +421,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalGroupMember", "ChangeType": "Addition", - "Description": "Added the [externalGroupMember](https://learn.microsoft.com/en-us/graph/api/resources/externalgroupmember?view=graph-rest-beta) resource.", + "Description": "Added the **externalGroupMember** resource.", "Target": "externalGroupMember" }, { @@ -487,7 +487,7 @@ "ApiChange": "Property", "ChangedApiName": "aliases,isRefinable,labels", "ChangeType": "Addition", - "Description": "Added the **aliases**, **isRefinable**, and **labels** properties to the [property](https://learn.microsoft.com/en-us/graph/api/resources/property?view=graph-rest-beta) entity.", + "Description": "Added the **aliases**, **isRefinable**, and **labels** properties to the **property** entity.", "Target": "property" }, { @@ -495,7 +495,7 @@ "ApiChange": "Resource", "ChangedApiName": "get externalItem", "ChangeType": "Addition", - "Description": "Added the [get externalItem](https://learn.microsoft.com/en-us/graph/api/externalitem-get?view=graph-rest-beta) operation.", + "Description": "Added the **get externalItem** operation.", "Target": "get externalItem" } ], @@ -521,7 +521,7 @@ "ApiChange": "Property", "ChangedApiName": "content,properties", "ChangeType": "Change", - "Description": "The [externalItem](https://learn.microsoft.com/en-us/graph/api/resources/externalitem?view=graph-rest-beta) resource now supports updating the **content** and **properties** properties.", + "Description": "The **externalItem** resource now supports updating the **content** and **properties** properties.", "Target": "externalItem" }, { @@ -529,7 +529,7 @@ "ApiChange": "Resource", "ChangedApiName": "Retry-After", "ChangeType": "Change", - "Description": "Operations on [externalItem](https://learn.microsoft.com/en-us/graph/api/resources/externalitem?view=graph-rest-beta) resources now return a **Retry-After** header when they are throttled.", + "Description": "Operations on **externalItem** resources now return a **Retry-After** header when they are throttled.", "Target": "externalItem" } ], @@ -547,7 +547,7 @@ "ApiChange": "Property", "ChangedApiName": "authorizedAppIds", "ChangeType": "Change", - "Description": "Renamed the **authorizedApps** property to **authorizedAppIds**. See [configuration](https://learn.microsoft.com/en-us/graph/api/resources/configuration?view=graph-rest-beta) resource. Moved this resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Renamed the **authorizedApps** property to **authorizedAppIds**. See **configuration** resource. Moved this resource to the microsoft.graph.externalConnectors namespace.", "Target": "configuration" }, { @@ -555,7 +555,7 @@ "ApiChange": "Resource", "ChangedApiName": "connectionOperation", "ChangeType": "Change", - "Description": "Moved the [connectionOperation](https://learn.microsoft.com/en-us/graph/api/resources/connectionOperation?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **connectionOperation** resource to the microsoft.graph.externalConnectors namespace.", "Target": "connectionOperation" }, { @@ -563,7 +563,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalConnection", "ChangeType": "Change", - "Description": "Moved the [externalConnection](https://learn.microsoft.com/en-us/graph/api/resources/externalConnection?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **externalConnection** resource to the microsoft.graph.externalConnectors namespace.", "Target": "externalConnection" }, { @@ -571,7 +571,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalGroup", "ChangeType": "Change", - "Description": "Moved the [externalGroup](https://learn.microsoft.com/en-us/graph/api/resources/externalGroup?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **externalGroup** resource to the microsoft.graph.externalConnectors namespace.", "Target": "externalGroup" }, { @@ -579,7 +579,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalGroupMember", "ChangeType": "Change", - "Description": "Moved the [externalGroupMember](https://learn.microsoft.com/en-us/graph/api/resources/externalGroupMember?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **externalGroupMember** resource to the microsoft.graph.externalConnectors namespace.", "Target": "externalGroupMember" }, { @@ -587,7 +587,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalItem", "ChangeType": "Change", - "Description": "Moved the [externalItem](https://learn.microsoft.com/en-us/graph/api/resources/externalItem?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **externalItem** resource to the microsoft.graph.externalConnectors namespace.", "Target": "externalItem" }, { @@ -595,7 +595,7 @@ "ApiChange": "Resource", "ChangedApiName": "schema", "ChangeType": "Change", - "Description": "Moved the [schema](https://learn.microsoft.com/en-us/graph/api/resources/schema?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **schema** resource to the microsoft.graph.externalConnectors namespace.", "Target": "schema" }, { @@ -603,7 +603,7 @@ "ApiChange": "Resource", "ChangedApiName": "acl", "ChangeType": "Change", - "Description": "Moved the [acl](https://learn.microsoft.com/en-us/graph/api/resources/acl?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **acl** resource to the microsoft.graph.externalConnectors namespace.", "Target": "acl" }, { @@ -611,7 +611,7 @@ "ApiChange": "Resource", "ChangedApiName": "configuration", "ChangeType": "Change", - "Description": "Moved the [configuration](https://learn.microsoft.com/en-us/graph/api/resources/configuration?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **configuration** resource to the microsoft.graph.externalConnectors namespace.", "Target": "configuration" }, { @@ -619,7 +619,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalItemContent", "ChangeType": "Change", - "Description": "Moved the [externalItemContent](https://learn.microsoft.com/en-us/graph/api/resources/externalItemContent?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **externalItemContent** resource to the microsoft.graph.externalConnectors namespace.", "Target": "externalItemContent" }, { @@ -635,7 +635,7 @@ "ApiChange": "Resource", "ChangedApiName": "property", "ChangeType": "Change", - "Description": "Moved the [property](https://learn.microsoft.com/en-us/graph/api/resources/property?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **property** resource to the microsoft.graph.externalConnectors namespace.", "Target": "property" }, { @@ -787,7 +787,7 @@ "ApiChange": "Property", "ChangedApiName": "isContent", "ChangeType": "Deletion", - "Description": "Removed the **isContent** property from the [property](https://learn.microsoft.com/en-us/graph/api/resources/property?view=graph-rest-beta) resource.", + "Description": "Removed the **isContent** property from the **property** resource.", "Target": "property" }, { @@ -795,7 +795,7 @@ "ApiChange": "Property", "ChangedApiName": "error", "ChangeType": "Change", - "Description": "Changed the type of the **error** property in the [connectionOperation](https://learn.microsoft.com/en-us/graph/api/resources/connectionOperation?view=graph-rest-beta) resource to be of [publicError](https://learn.microsoft.com/en-us/graph/api/resources/publicerror?view=graph-rest-beta) type instead.", + "Description": "Changed the type of the **error** property in the **connectionOperation** resource to be of [publicError](https://learn.microsoft.com/en-us/graph/api/resources/publicerror?view=graph-rest-beta) type instead.", "Target": "connectionOperation" }, { @@ -881,7 +881,7 @@ "ApiChange": "Resource", "ChangedApiName": "connectionOperation", "ChangeType": "Addition", - "Description": "Added the [connectionOperation](https://learn.microsoft.com/en-us/graph/api/resources/connectionOperation?view=graph-rest-1.0) resource type.", + "Description": "Added the **connectionOperation** resource type.", "Target": "connectionOperation" }, { @@ -889,7 +889,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalConnection", "ChangeType": "Addition", - "Description": "Added the [externalConnection](https://learn.microsoft.com/en-us/graph/api/resources/externalConnection?view=graph-rest-1.0) resource type.", + "Description": "Added the **externalConnection** resource type.", "Target": "externalConnection" }, { @@ -897,7 +897,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalItem", "ChangeType": "Addition", - "Description": "Added the [externalItem](https://learn.microsoft.com/en-us/graph/api/resources/externalItem?view=graph-rest-1.0) resource type.", + "Description": "Added the **externalItem** resource type.", "Target": "externalItem" }, { @@ -905,7 +905,7 @@ "ApiChange": "Resource", "ChangedApiName": "schema", "ChangeType": "Addition", - "Description": "Added the [schema](https://learn.microsoft.com/en-us/graph/api/resources/schema?view=graph-rest-1.0) resource type.", + "Description": "Added the **schema** resource type.", "Target": "schema" }, { @@ -913,7 +913,7 @@ "ApiChange": "Resource", "ChangedApiName": "acl", "ChangeType": "Addition", - "Description": "Added the [acl](https://learn.microsoft.com/en-us/graph/api/resources/acl?view=graph-rest-1.0) resource type.", + "Description": "Added the **acl** resource type.", "Target": "acl" }, { @@ -921,7 +921,7 @@ "ApiChange": "Resource", "ChangedApiName": "configuration", "ChangeType": "Addition", - "Description": "Added the [configuration](https://learn.microsoft.com/en-us/graph/api/resources/configuration?view=graph-rest-1.0) resource type.", + "Description": "Added the **configuration** resource type.", "Target": "configuration" }, { @@ -929,7 +929,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalItemContent", "ChangeType": "Addition", - "Description": "Added the [externalItemContent](https://learn.microsoft.com/en-us/graph/api/resources/externalItemContent?view=graph-rest-1.0) resource type.", + "Description": "Added the **externalItemContent** resource type.", "Target": "externalItemContent" }, { @@ -945,7 +945,7 @@ "ApiChange": "Resource", "ChangedApiName": "property", "ChangeType": "Addition", - "Description": "Added the [property](https://learn.microsoft.com/en-us/graph/api/resources/property?view=graph-rest-1.0) resource type.", + "Description": "Added the **property** resource type.", "Target": "property" }, { @@ -1043,7 +1043,7 @@ "ApiChange": "Relationship", "ChangedApiName": "groups", "ChangeType": "Addition", - "Description": "Added the **groups** relationship to the [externalConnection](https://learn.microsoft.com/en-us/graph/api/resources/externalConnection?view=graph-rest-1.0) resource.", + "Description": "Added the **groups** relationship to the **externalConnection** resource.", "Target": "externalConnection" }, { @@ -1051,7 +1051,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalGroup", "ChangeType": "Addition", - "Description": "Added the [externalGroup](https://learn.microsoft.com/en-us/graph/api/resources/externalGroup?view=graph-rest-1.0) resource type.", + "Description": "Added the **externalGroup** resource type.", "Target": "externalGroup" }, { @@ -1769,7 +1769,7 @@ "ApiChange": "Property", "ChangedApiName": "isExactMatchRequired", "ChangeType": "Addition", - "Description": "Added the **isExactMatchRequired** property to the [property](https://learn.microsoft.com/en-us/graph/api/resources/property?view=graph-rest-beta) resource.", + "Description": "Added the **isExactMatchRequired** property to the **property** resource.", "Target": "property" } ], @@ -1945,7 +1945,7 @@ "ApiChange": "Property", "ChangedApiName": "rankingHint", "ChangeType": "Addition", - "Description": "Added the **rankingHint** property to the [property](https://learn.microsoft.com/en-us/graph/api/resources/property?view=graph-rest-beta) resource.", + "Description": "Added the **rankingHint** property to the **property** resource.", "Target": "property" } ], diff --git a/changelog/Microsoft.Security.Copilot.json b/changelog/Microsoft.Security.Copilot.json index 7cef28da5f4..d7a97ab19a9 100644 --- a/changelog/Microsoft.Security.Copilot.json +++ b/changelog/Microsoft.Security.Copilot.json @@ -95,7 +95,7 @@ "ApiChange": "Resource", "ChangedApiName": "evaluation", "ChangeType": "Addition", - "Description": "Added the [evaluation](https://learn.microsoft.com/en-us/graph/api/resources/security.securityCopilot-evaluation?view=graph-rest-beta) resource.", + "Description": "Added the **evaluation** resource.", "Target": "evaluation" }, { @@ -103,7 +103,7 @@ "ApiChange": "Resource", "ChangedApiName": "plugin", "ChangeType": "Addition", - "Description": "Added the [plugin](https://learn.microsoft.com/en-us/graph/api/resources/security.securityCopilot-plugin?view=graph-rest-beta) resource.", + "Description": "Added the **plugin** resource.", "Target": "plugin" }, { @@ -111,7 +111,7 @@ "ApiChange": "Resource", "ChangedApiName": "prompt", "ChangeType": "Addition", - "Description": "Added the [prompt](https://learn.microsoft.com/en-us/graph/api/resources/security.securityCopilot-prompt?view=graph-rest-beta) resource.", + "Description": "Added the **prompt** resource.", "Target": "prompt" }, { @@ -119,7 +119,7 @@ "ApiChange": "Resource", "ChangedApiName": "session", "ChangeType": "Addition", - "Description": "Added the [session](https://learn.microsoft.com/en-us/graph/api/resources/security.securityCopilot-session?view=graph-rest-beta) resource.", + "Description": "Added the **session** resource.", "Target": "session" }, { @@ -127,7 +127,7 @@ "ApiChange": "Resource", "ChangedApiName": "workspace", "ChangeType": "Addition", - "Description": "Added the [workspace](https://learn.microsoft.com/en-us/graph/api/resources/security.securityCopilot-workspace?view=graph-rest-beta) resource.", + "Description": "Added the **workspace** resource.", "Target": "workspace" } ], diff --git a/changelog/Microsoft.Security.RecordsManagement.json b/changelog/Microsoft.Security.RecordsManagement.json index b363137aacd..ce0e9057d98 100644 --- a/changelog/Microsoft.Security.RecordsManagement.json +++ b/changelog/Microsoft.Security.RecordsManagement.json @@ -219,7 +219,7 @@ "ApiChange": "Resource", "ChangedApiName": "appliedCategory", "ChangeType": "Addition", - "Description": "Added the [appliedCategory](https://learn.microsoft.com/en-us/graph/api/resources/security-appliedCategory?view=graph-rest-beta) resource type.", + "Description": "Added the **appliedCategory** resource type.", "Target": "appliedCategory" }, { @@ -227,7 +227,7 @@ "ApiChange": "Resource", "ChangedApiName": "authority", "ChangeType": "Addition", - "Description": "Added the [authority](https://learn.microsoft.com/en-us/graph/api/resources/security-authority?view=graph-rest-beta) resource type.", + "Description": "Added the **authority** resource type.", "Target": "authority" }, { @@ -235,7 +235,7 @@ "ApiChange": "Resource", "ChangedApiName": "citation", "ChangeType": "Addition", - "Description": "Added the [citation](https://learn.microsoft.com/en-us/graph/api/resources/security-citation?view=graph-rest-beta) resource type.", + "Description": "Added the **citation** resource type.", "Target": "citation" }, { @@ -243,7 +243,7 @@ "ApiChange": "Resource", "ChangedApiName": "department", "ChangeType": "Addition", - "Description": "Added the [department](https://learn.microsoft.com/en-us/graph/api/resources/security-department?view=graph-rest-beta) resource type.", + "Description": "Added the **department** resource type.", "Target": "department" }, { @@ -259,7 +259,7 @@ "ApiChange": "Resource", "ChangedApiName": "subCategory", "ChangeType": "Addition", - "Description": "Added the [subCategory](https://learn.microsoft.com/en-us/graph/api/resources/security-subCategory?view=graph-rest-beta) resource type.", + "Description": "Added the **subCategory** resource type.", "Target": "subCategory" }, { @@ -453,7 +453,7 @@ "ApiChange": "Resource", "ChangedApiName": "appliedCategory", "ChangeType": "Addition", - "Description": "Added the [appliedCategory](https://learn.microsoft.com/en-us/graph/api/resources/security-appliedCategory?view=graph-rest-v1.0) resource type.", + "Description": "Added the **appliedCategory** resource type.", "Target": "appliedCategory" }, { @@ -461,7 +461,7 @@ "ApiChange": "Resource", "ChangedApiName": "authority", "ChangeType": "Addition", - "Description": "Added the [authority](https://learn.microsoft.com/en-us/graph/api/resources/security-authority?view=graph-rest-v1.0) resource type.", + "Description": "Added the **authority** resource type.", "Target": "authority" }, { @@ -469,7 +469,7 @@ "ApiChange": "Resource", "ChangedApiName": "citation", "ChangeType": "Addition", - "Description": "Added the [citation](https://learn.microsoft.com/en-us/graph/api/resources/security-citation?view=graph-rest-v1.0) resource type.", + "Description": "Added the **citation** resource type.", "Target": "citation" }, { @@ -477,7 +477,7 @@ "ApiChange": "Resource", "ChangedApiName": "department", "ChangeType": "Addition", - "Description": "Added the [department](https://learn.microsoft.com/en-us/graph/api/resources/security-department?view=graph-rest-v1.0) resource type.", + "Description": "Added the **department** resource type.", "Target": "department" }, { @@ -493,7 +493,7 @@ "ApiChange": "Resource", "ChangedApiName": "subCategory", "ChangeType": "Addition", - "Description": "Added the [subCategory](https://learn.microsoft.com/en-us/graph/api/resources/security-subCategory?view=graph-rest-v1.0) resource type.", + "Description": "Added the **subCategory** resource type.", "Target": "subCategory" }, { diff --git a/changelog/Microsoft.Skype.Calling.json b/changelog/Microsoft.Skype.Calling.json index 6211d096909..27cfaf6a7a5 100644 --- a/changelog/Microsoft.Skype.Calling.json +++ b/changelog/Microsoft.Skype.Calling.json @@ -1,6 +1,89 @@ { - "changelog": [ + "changelog": [ + { + "ChangeList": [ + { "Id": "d6dafc7e-e1bf-44d0-80be-759a2366c56d", + "ApiChange": "Resource", + "ChangedApiName": "cloudVideoInteropInfo", + "ChangeType": "Addition", + "Description": "Added the [cloudVideoInteropInfo](https://learn.microsoft.com/en-us/graph/api/resources/cloudVideoInteropInfo?view=graph-rest-beta) resource.", + "Target": "cloudVideoInteropInfo" + }, + { + "Id": "d6dafc7e-e1bf-44d0-80be-759a2366c56d", + "ApiChange": "Property", + "ChangedApiName": "cloudVideoInteropInfo", + "ChangeType": "Addition", + "Description": "Added the **cloudVideoInteropInfo** property to the [onlineMeetingBase](https://learn.microsoft.com/en-us/graph/api/resources/onlineMeetingBase?view=graph-rest-beta) resource.", + "Target": "onlineMeetingBase" + }, + { + "Id": "d6dafc7e-e1bf-44d0-80be-759a2366c56d", + "ApiChange": "Property", + "ChangedApiName": "cloudVideoInteropInfo", + "ChangeType": "Addition", + "Description": "Added the **cloudVideoInteropInfo** property to the [onlineMeeting](https://learn.microsoft.com/en-us/graph/api/resources/onlineMeeting?view=graph-rest-beta) resource.", + "Target": "onlineMeeting" + }, + { + "Id": "d6dafc7e-e1bf-44d0-80be-759a2366c56d", + "ApiChange": "Property", + "ChangedApiName": "cloudVideoInteropInfo", + "ChangeType": "Addition", + "Description": "Added the **cloudVideoInteropInfo** property to the [virtualEventSession](https://learn.microsoft.com/en-us/graph/api/resources/virtualEventSession?view=graph-rest-beta) resource.", + "Target": "virtualEventSession" + } + ], + "Id": "d6dafc7e-e1bf-44d0-80be-759a2366c56d", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-19T00:26:49.9451195Z", + "WorkloadArea": "Teamwork and communications", + "SubArea": "Calls and online meetings" + }, + { + "ChangeList": [ + { + "Id": "c84cd57a-479f-4e73-b106-835e33615bc0", + "ApiChange": "Property", + "ChangedApiName": "meetingType", + "ChangeType": "Addition", + "Description": "Added the **meetingType** property to the [onlineMeetingBase](https://learn.microsoft.com/en-us/graph/api/resources/onlineMeetingBase?view=graph-rest-beta) resource.", + "Target": "onlineMeetingBase" + }, + { + "Id": "c84cd57a-479f-4e73-b106-835e33615bc0", + "ApiChange": "Property", + "ChangedApiName": "meetingType", + "ChangeType": "Addition", + "Description": "Added the **meetingType** property to the [onlineMeeting](https://learn.microsoft.com/en-us/graph/api/resources/onlineMeeting?view=graph-rest-beta) resource.", + "Target": "onlineMeeting" + }, { + "Id": "c84cd57a-479f-4e73-b106-835e33615bc0", + "ApiChange": "Property", + "ChangedApiName": "meetingType", + "ChangeType": "Addition", + "Description": "Added the **meetingType** property to the [virtualEventSession](https://learn.microsoft.com/en-us/graph/api/resources/virtualEventSession?view=graph-rest-beta) resource.", + "Target": "virtualEventSession" + }, + { + "Id": "c84cd57a-479f-4e73-b106-835e33615bc0", + "ApiChange": "Enumeration", + "ChangedApiName": "onlineMeetingType", + "ChangeType": "Addition", + "Description": "Added the **onlineMeetingType** enumeration type.", + "Target": "onlineMeetingType" + } + ], + "Id": "c84cd57a-479f-4e73-b106-835e33615bc0", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-18T16:02:03.2817806Z", + "WorkloadArea": "Teamwork and communications", + "SubArea": "Calls and online meetings" + }, + { "ChangeList": [ { "Id": "b1e145ad-965e-474e-afa6-28a008f989a4", @@ -92,6 +175,39 @@ "WorkloadArea": "Cloud communications", "SubArea": "Call" }, + { + "ChangeList": [ + {"Id": "8aa183d2-7bc3-4935-95ff-aef0791161cb", + "ApiChange": "Property", + "ChangedApiName": "isRegistrationRequired", + "ChangeType": "Addition", + "Description": "Added the **isRegistrationRequired** property to the [virtualEvent](https://learn.microsoft.com/en-us/graph/api/resources/virtualEvent?view=graph-rest-beta) resource.", + "Target": "virtualEvent" + }, + { + "Id": "8aa183d2-7bc3-4935-95ff-aef0791161cb", + "ApiChange": "Property", + "ChangedApiName": "isRegistrationRequired", + "ChangeType": "Addition", + "Description": "Added the **isRegistrationRequired** property to the [virtualEventTownhall](https://learn.microsoft.com/en-us/graph/api/resources/virtualEventTownhall?view=graph-rest-beta) resource.", + "Target": "virtualEventTownhall" + }, + { + "Id": "8aa183d2-7bc3-4935-95ff-aef0791161cb", + "ApiChange": "Property", + "ChangedApiName": "isRegistrationRequired", + "ChangeType": "Addition", + "Description": "Added the **isRegistrationRequired** property to the [virtualEventWebinar](https://learn.microsoft.com/en-us/graph/api/resources/virtualEventWebinar?view=graph-rest-beta) resource.", + "Target": "virtualEventWebinar" + } + ], + "Id": "8aa183d2-7bc3-4935-95ff-aef0791161cb", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-19T00:21:50.826006Z", + "WorkloadArea": "Teamwork and communications", + "SubArea": "Calls and online meetings" + }, { "ChangeList": [ { @@ -3023,7 +3139,7 @@ "ApiChange": "Method", "ChangedApiName": "virtualEventSession", "ChangeType": "Addition", - "Description": "Added the [LIST](https://learn.microsoft.com/en-us/graph/api/virtualeventsession-list?view=graph-rest-beta) operation to the [virtualEventSession](https://learn.microsoft.com/en-us/graph/api/resources/virtualEventSession?view=graph-rest-beta) resource.", + "Description": "Added the **LIST** operation to the [virtualEventSession](https://learn.microsoft.com/en-us/graph/api/resources/virtualEventSession?view=graph-rest-beta) resource.", "Target": "virtualEventSession" } ], @@ -3195,7 +3311,7 @@ "ApiChange": "Resource", "ChangedApiName": "virtualEventRegistrant", "ChangeType": "Addition", - "Description": "Added the [virtualEventRegistrant](https://learn.microsoft.com/en-us/graph/api/resources/virtualEventRegistrant?view=graph-rest-beta) resource", + "Description": "Added the **virtualEventRegistrant** resource", "Target": "virtualEventRegistrant" }, { @@ -5217,7 +5333,7 @@ "ApiChange": "Resource", "ChangedApiName": "presence,change notifications", "ChangeType": "Addition", - "Description": "The [presence](https://learn.microsoft.com/en-us/graph/api/resources/presence) resource now supports [change notifications](https://learn.microsoft.com/en-us/graph/webhooks).", + "Description": "The [presence](https://learn.microsoft.com/en-us/graph/api/resources/presence) resource now supports **change notifications**.", "Target": "presence,change notifications" } ], @@ -5337,7 +5453,7 @@ "ApiChange": "Resource", "ChangedApiName": "webhook", "ChangeType": "Addition", - "Description": "Added support for [webhook](https://learn.microsoft.com/en-us/graph/api/resources/webhooks?view=graph-rest-1.0) subscriptions to call records.", + "Description": "Added support for **webhook** subscriptions to call records.", "Target": "webhook" }, { @@ -5361,7 +5477,7 @@ "ApiChange": "Resource", "ChangedApiName": "List sessions", "ChangeType": "Addition", - "Description": "Added the [List sessions](https://learn.microsoft.com/en-us/graph/api/callrecords-session-list?view=graph-rest-beta) API.", + "Description": "Added the **List sessions** API.", "Target": "List sessions" } ], @@ -5617,7 +5733,7 @@ "ApiChange": "Resource", "ChangedApiName": "webhook", "ChangeType": "Addition", - "Description": "Added support for [webhook](https://learn.microsoft.com/en-us/graph/api/resources/webhooks?view=graph-rest-1.0) subscriptions to call records.", + "Description": "Added support for **webhook** subscriptions to call records.", "Target": "webhook" } ], diff --git a/changelog/Microsoft.SubscriptionServices.json b/changelog/Microsoft.SubscriptionServices.json index de238a1ab59..2ebc24a3d61 100644 --- a/changelog/Microsoft.SubscriptionServices.json +++ b/changelog/Microsoft.SubscriptionServices.json @@ -253,7 +253,7 @@ "ApiChange": "Resource", "ChangedApiName": "todoTask, change notifications", "ChangeType": "Addition", - "Description": "Added [todoTask](https://learn.microsoft.com/en-us/graph/api/resources/todoTask?view=graph-rest-beta) to the resources supported for [change notifications](https://learn.microsoft.com/en-us/graph/webhooks).", + "Description": "Added [todoTask](https://learn.microsoft.com/en-us/graph/api/resources/todoTask?view=graph-rest-beta) to the resources supported for **change notifications**.", "Target": "todoTask, change notifications" } ], @@ -271,7 +271,7 @@ "ApiChange": "Resource", "ChangedApiName": "printTaskDefinition, change notifications", "ChangeType": "Addition", - "Description": "Added [printTaskDefinition](https://learn.microsoft.com/en-us/graph/api/resources/printtaskdefinition?view=graph-rest-beta) to the resources supported for [change notifications](https://learn.microsoft.com/en-us/graph/webhooks).", + "Description": "Added [printTaskDefinition](https://learn.microsoft.com/en-us/graph/api/resources/printtaskdefinition?view=graph-rest-beta) to the resources supported for **change notifications**.", "Target": "printTaskDefinition, change notifications" } ], @@ -289,7 +289,7 @@ "ApiChange": "Resource", "ChangedApiName": "lifecycle notifications,chatMessage,contact,event,message", "ChangeType": "Addition", - "Description": "Added [lifecycle notifications](https://learn.microsoft.com/en-us/graph/webhooks-lifecycle) for personal [chatMessage](https://learn.microsoft.com/en-us/graph/api/resources/chatmessage?view=graph-rest-1.0), [contact](https://learn.microsoft.com/en-us/graph/api/resources/contact?view=graph-rest-1.0), [event](https://learn.microsoft.com/en-us/graph/api/resources/event?view=graph-rest-1.0), and [message](https://learn.microsoft.com/en-us/graph/api/resources/message?view=graph-rest-1.0).", + "Description": "Added **lifecycle notifications** for personal [chatMessage](https://learn.microsoft.com/en-us/graph/api/resources/chatmessage?view=graph-rest-1.0), [contact](https://learn.microsoft.com/en-us/graph/api/resources/contact?view=graph-rest-1.0), [event](https://learn.microsoft.com/en-us/graph/api/resources/event?view=graph-rest-1.0), and [message](https://learn.microsoft.com/en-us/graph/api/resources/message?view=graph-rest-1.0).", "Target": "lifecycle notifications,chatMessage,contact,event,message" } ], @@ -307,7 +307,7 @@ "ApiChange": "Resource", "ChangedApiName": "chatMessage,change notifications", "ChangeType": "Addition", - "Description": "Added [chatMessage](https://learn.microsoft.com/en-us/graph/api/resources/presence) to the resources supported for [change notifications](https://learn.microsoft.com/en-us/graph/webhooks).", + "Description": "Added [chatMessage](https://learn.microsoft.com/en-us/graph/api/resources/presence) to the resources supported for **change notifications**.", "Target": "chatMessage,change notifications" } ], @@ -369,7 +369,7 @@ "ApiChange": "Resource", "ChangedApiName": "presence,change notifications", "ChangeType": "Addition", - "Description": "Added [presence](https://learn.microsoft.com/en-us/graph/api/resources/presence) to the resources supported for [change notifications](https://learn.microsoft.com/en-us/graph/webhooks).", + "Description": "Added [presence](https://learn.microsoft.com/en-us/graph/api/resources/presence) to the resources supported for **change notifications**.", "Target": "presence,change notifications" } ], @@ -387,7 +387,7 @@ "ApiChange": "Resource", "ChangedApiName": "changeNotification,changeNotificationCollection,resourceData,change notification", "ChangeType": "Addition", - "Description": "Added the [changeNotification](https://learn.microsoft.com/en-us/graph/api/resources/changenotification?view=graph-rest-1.0), [changeNotificationCollection](https://learn.microsoft.com/en-us/graph/api/resources/changenotificationcollection?view=graph-rest-1.0), and [resourceData](https://learn.microsoft.com/en-us/graph/api/resources/resourcedata?view=graph-rest-1.0) resources to the [change notification](https://learn.microsoft.com/en-us/graph/api/resources/webhooks?view=graph-rest-beta) API.", + "Description": "Added the [changeNotification](https://learn.microsoft.com/en-us/graph/api/resources/changenotification?view=graph-rest-1.0), [changeNotificationCollection](https://learn.microsoft.com/en-us/graph/api/resources/changenotificationcollection?view=graph-rest-1.0), and [resourceData](https://learn.microsoft.com/en-us/graph/api/resources/resourcedata?view=graph-rest-1.0) resources to the **change notification** API.", "Target": "changeNotification,changeNotificationCollection,resourceData,change notification" } ], @@ -405,7 +405,7 @@ "ApiChange": "Resource", "ChangedApiName": "changeNotification,changeNotificationCollection,changeNotificationEncryptedContent,change notification", "ChangeType": "Addition", - "Description": "Added the [changeNotification](https://learn.microsoft.com/en-us/graph/api/resources/changenotification?view=graph-rest-beta), [changeNotificationCollection](https://learn.microsoft.com/en-us/graph/api/resources/changenotificationcollection?view=graph-rest-beta), and [changeNotificationEncryptedContent](https://learn.microsoft.com/en-us/graph/api/resources/changenotificationencryptedcontent?view=graph-rest-beta) resources for the [change notification](https://learn.microsoft.com/en-us/graph/api/resources/webhooks?view=graph-rest-beta) API.", + "Description": "Added the [changeNotification](https://learn.microsoft.com/en-us/graph/api/resources/changenotification?view=graph-rest-beta), [changeNotificationCollection](https://learn.microsoft.com/en-us/graph/api/resources/changenotificationcollection?view=graph-rest-beta), and [changeNotificationEncryptedContent](https://learn.microsoft.com/en-us/graph/api/resources/changenotificationencryptedcontent?view=graph-rest-beta) resources for the **change notification** API.", "Target": "changeNotification,changeNotificationCollection,changeNotificationEncryptedContent,change notification" } ], diff --git a/changelog/Microsoft.Teams.GraphSvc.json b/changelog/Microsoft.Teams.GraphSvc.json index ca415ed1c89..fb1086aad6c 100644 --- a/changelog/Microsoft.Teams.GraphSvc.json +++ b/changelog/Microsoft.Teams.GraphSvc.json @@ -3227,7 +3227,7 @@ "ApiChange": "Method", "ChangedApiName": "getAllEnterpriseInteractions", "ChangeType": "Addition", - "Description": "Added the [getAllEnterpriseInteractions](https://learn.microsoft.com/en-us/microsoft-365-copilot/extensibility/api-reference/aiInteractionHistory-getAllEnterpriseInteractions?view=graph-rest-beta) method to the [aiInteractionHistory](https://learn.microsoft.com/en-us/graph/api/resources/aiInteractionHistory?view=graph-rest-beta) resource.", + "Description": "Added the **getAllEnterpriseInteractions** method to the [aiInteractionHistory](https://learn.microsoft.com/en-us/graph/api/resources/aiInteractionHistory?view=graph-rest-beta) resource.", "Target": "aiInteractionHistory" } ], @@ -3565,7 +3565,7 @@ "ApiChange": "Method", "ChangedApiName": "getAllEnterpriseInteractions", "ChangeType": "Addition", - "Description": "Added the [getAllEnterpriseInteractions](https://learn.microsoft.com/en-us/microsoft-365-copilot/extensibility/api-reference/aiInteractionHistory-getAllEnterpriseInteractions?view=graph-rest-1.0) method to the [aiInteractionHistory](https://learn.microsoft.com/en-us/graph/api/resources/aiInteractionHistory?view=graph-rest-1.0) resource.", + "Description": "Added the **getAllEnterpriseInteractions** method to the [aiInteractionHistory](https://learn.microsoft.com/en-us/graph/api/resources/aiInteractionHistory?view=graph-rest-1.0) resource.", "Target": "aiInteractionHistory" }, { diff --git a/changelog/Microsoft.Teams.Shifts.json b/changelog/Microsoft.Teams.Shifts.json index 2599bc8b0cc..15b2abdb767 100644 --- a/changelog/Microsoft.Teams.Shifts.json +++ b/changelog/Microsoft.Teams.Shifts.json @@ -1383,7 +1383,7 @@ "ApiChange": "Parameter", "ChangedApiName": "onBehalfOfUserId", "ChangeType": "Addition", - "Description": "Added the `onBehalfOfUserId` parameter to the [clockIn](https://learn.microsoft.com/en-us/graph/api/timeCard?view=graph-rest-1.0) method.", + "Description": "Added the `onBehalfOfUserId` parameter to the **clockIn** method.", "Target": "clockIn" } ], @@ -1401,7 +1401,7 @@ "ApiChange": "Parameter", "ChangedApiName": "onBehalfOfUserId", "ChangeType": "Addition", - "Description": "Added the `onBehalfOfUserId` parameter to the [clockIn](https://learn.microsoft.com/en-us/graph/api/timeCard?view=graph-rest-1.0) method.", + "Description": "Added the `onBehalfOfUserId` parameter to the **clockIn** method.", "Target": "clockIn" } ], diff --git a/changelog/Microsoft.Todo.json b/changelog/Microsoft.Todo.json index f4e01a0a97a..8bba48de11a 100644 --- a/changelog/Microsoft.Todo.json +++ b/changelog/Microsoft.Todo.json @@ -335,7 +335,7 @@ "ApiChange": "Resource", "ChangedApiName": "todoTask, change notifications", "ChangeType": "Addition", - "Description": "Added [todoTask](https://learn.microsoft.com/en-us/graph/api/resources/todoTask?view=graph-rest-beta) to the resources supported for [change notifications](https://learn.microsoft.com/en-us/graph/webhooks).", + "Description": "Added [todoTask](https://learn.microsoft.com/en-us/graph/api/resources/todoTask?view=graph-rest-beta) to the resources supported for **change notifications**.", "Target": "todoTask, change notifications" } ], diff --git a/changelog/Microsoft.ZTNA.json b/changelog/Microsoft.ZTNA.json index 5d7e088262a..007c0d5f9de 100644 --- a/changelog/Microsoft.ZTNA.json +++ b/changelog/Microsoft.ZTNA.json @@ -169,7 +169,7 @@ "ApiChange": "Resource", "ChangedApiName": "enrichedAuditLogs", "ChangeType": "Addition", - "Description": "Added the [enrichedAuditLogs](https://learn.microsoft.com/en-us/graph/api/resources/networkaccess-enrichedAuditLogs?view=graph-rest-beta) resource.", + "Description": "Added the **enrichedAuditLogs** resource.", "Target": "enrichedAuditLogs" }, { @@ -289,7 +289,7 @@ "ApiChange": "Resource", "ChangedApiName": "enrichedAuditLogsSettings", "ChangeType": "Addition", - "Description": "Added the [enrichedAuditLogsSettings](https://learn.microsoft.com/en-us/graph/api/resources/networkaccess-enrichedAuditLogsSettings?view=graph-rest-beta) resource type.", + "Description": "Added the **enrichedAuditLogsSettings** resource type.", "Target": "enrichedAuditLogsSettings" }, { @@ -1117,7 +1117,7 @@ "ApiChange": "Resource", "ChangedApiName": "webCategories", "ChangeType": "Addition", - "Description": "Added the **webCategories** property to the [connectivity](https://learn.microsoft.com/en-us/graph/api/resources/networkaccess-conenctivity?view=graph-rest-beta) resource type.", + "Description": "Added the **webCategories** property to the **connectivity** resource type.", "Target": "connectivity" } ], diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 59e537e8f97..635ca82bc9c 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -28,10 +28,20 @@ Evaluate applications in the Microsoft Entra application gallery by using the [a [Upsert](/graph/api/filestoragecontainer-patch-permissions) (create or update) up to 40 permissions on a [fileStorageContainer](/graph/api/resources/filestoragecontainer) in a single request. The limit increased from 10 to 40 [permission](/graph/api/resources/permission) objects per request. +### Identity and access | Governance + +Added the **type** property to the [accessPackageResourceRole](/graph/api/resources/accesspackageresourcerole) resource to indicate whether an Azure resource role is active or eligible, enabling PIM-based role assignments for Azure resources in access packages. + ### Identity and access | Identity and sign-in Added support for programmatic FIDO2 passkey registration. Use the [creationOptions](/graph/api/fido2authenticationmethod-creationoptions) function to get WebAuthn credential creation options, then complete registration by posting the new **publicKeyCredential** property to the [fido2AuthenticationMethod](/graph/api/resources/fido2authenticationmethod) resource. +### Identity and access | Governance + +- Added the [accessPackageSuggestion](/graph/api/resources/accesspackagesuggestion) resource type and related methods for discovering suggested access packages based on related people insights and assignment history. Use the [filterByCurrentUser](/graph/api/accesspackagesuggestions-filterbycurrentuser) function to retrieve personalized suggestions. +- Added the **approverInformationVisibility** property to the [accessPackageApprovalStage](/graph/api/resources/accesspackageapprovalstage) resource to control whether approver information is visible to requestors. +- Added the [endUserSettings](/graph/api/resources/endusersettings) resource type and related methods for configuring access package suggestion behavior, including related people insight levels and approver detail visibility. + ### People and workplace intelligence - Updated [Manage profile source precedence in Microsoft 365](/graph/profilepriority-configure-profilepropertysetting) to clarify supported data sources for HR and work position data, explain how source precedence affects single-value versus multi-value properties, and add guidance on correctly configuring and removing tenant-level settings using the Microsoft Graph API or PowerShell. @@ -53,10 +63,18 @@ Application permissions for the [user: translateExchangeIds](/graph/api/user-tra ## June 2026: New in preview only +### Security | Data security and compliance + +Added the [policyTipAction](/graph/api/resources/policytipaction?view=graph-rest-beta&preserve-view=true) resource type and the `policyTip` member to the **dlpAction** enumeration. This enables applications to receive policy tip guidance as a standalone action when DLP policies are triggered through the processContent and protectionScopes APIs. + ### Backup storage Use the new full workload backup APIs to protect entire Microsoft 365 workloads (SharePoint Online, OneDrive for work or school, and Exchange Online) with minimal administrative overhead. Instead of manually selecting each item to protect, you can create a protection policy that backs up all data in a workload and then specify only the items to exclude from backup. For more information, see [exclusionUnitBase](/graph/api/resources/exclusionunitbase?view=graph-rest-beta&preserve-view=true) and [exclusionUnitBulkAdditionJob](/graph/api/resources/exclusionunitbulkadditionjob?view=graph-rest-beta&preserve-view=true). +### Teamwork and communications | Calls and online meetings + +Use the **isRegistrationRequired** property on the [virtualEventTownhall](/graph/api/resources/virtualeventtownhall?view=graph-rest-beta&preserve-view=true) and [virtualEventWebinar](/graph/api/resources/virtualeventwebinar?view=graph-rest-beta&preserve-view=true) resources to specify if attendees must complete the registration flow before they can attend. + ### Device and app management | Cloud PC Use the [cloudPcProvisioningPolicy: apply](/graph/api/cloudpcprovisioningpolicy-apply?view=graph-rest-beta&preserve-view=true) method to apply policy settings such as `region` and `singleSignOn`. This method also supports reprovisioning for frontline shared mode Cloud PCs by using the **reservePercentage** parameter to control the percentage of Cloud PCs that remain available during the process. @@ -91,15 +109,29 @@ Personal distribution lists enable users to group email recipients together and - Introduced [sensor migration](/graph/api/resources/security-sensormigration?view=graph-rest-beta&preserve-view=true) capabilities to migrate eligible Microsoft Defender for Identity sensors. - Use the [Create manualAlert](/graph/api/security-alert-post-manualalert?view=graph-rest-beta&preserve-view=true) method to create a manual security alert with specified entities and metadata. The new [manualAlert](/graph/api/resources/security-manualalert?view=graph-rest-beta&preserve-view=true) resource type derives from [alert](/graph/api/resources/security-alert?view=graph-rest-beta&preserve-view=true) and uses the [entityDefinitionInput](/graph/api/resources/security-entitydefinitioninput?view=graph-rest-beta&preserve-view=true) complex type to specify associated entities. - Added the **tenantId** property to the [userAccount](/graph/api/resources/security-useraccount?view=graph-rest-beta&preserve-view=true) resource to provide the Entra home tenant ID for the compromised user account indicated in a [security alert](/graph/api/resources/security-alert?view=graph-rest-beta&preserve-view=true) where the alert evidence is related to a [processEvidence](/graph/api/resources/security-processevidence?view=graph-rest-beta&preserve-view=true), [userEvidence](/graph/api/resources/security-userevidence?view=graph-rest-beta&preserve-view=true), or [mailboxEvidence](/graph/api/resources/security-mailboxevidence?view=graph-rest-beta&preserve-view=true). +- Updated the [custom detection rules API](/graph/api/resources/security-detectionrule?view=graph-rest-beta&preserve-view=true) in Microsoft 365 Defender with new capabilities, including: Infrastructure-as-code (IaC) support through user-defined IDs, custom run frequency, flexible entity mapping, custom alert details, and configurable response actions. ### Sites and lists Added the [sharePointReportSettings](/graph/api/resources/sharepointreportsettings?view=graph-rest-beta&preserve-view=true) resource type and related methods for managing SharePoint API usage report metrics. Use the [enableApiUsageReport](/graph/api/sharepointreportsettings-enableapiusagereport?view=graph-rest-beta&preserve-view=true) and [disableApiUsageReport](/graph/api/sharepointreportsettings-disableapiusagereport?view=graph-rest-beta&preserve-view=true) methods to control which metrics are collected and reported for your tenant. +### Tasks and plans + +Added support for tracking task history in Planner. Use the [plannerHistoryItem](/graph/api/resources/plannerhistoryitem?view=graph-rest-beta&preserve-view=true) resource and [List historyItems](/graph/api/plannerplan-list-historyitems?view=graph-rest-beta&preserve-view=true) method to retrieve the history of changes made to tasks within a plan. The [taskHistoryItem](/graph/api/resources/taskhistoryitem?view=graph-rest-beta&preserve-view=true) resource provides snapshots of task states before and after each change through [plannerTaskData](/graph/api/resources/plannertaskdata?view=graph-rest-beta&preserve-view=true) and [plannerTaskDetailsData](/graph/api/resources/plannertaskdetailsdata?view=graph-rest-beta&preserve-view=true). + +### Teamwork and communications | Calls and online meetings + +- Use the **meetingType** property on [onlineMeeting](/graph/api/resources/onlinemeeting?view=graph-rest-beta&preserve-view=true) and [virtualEventSession](/graph/api/resources/virtualeventsession?view=graph-rest-beta&preserve-view=true) to determine whether a meeting is ad hoc, scheduled, recurring, a broadcast, or a *Meet now* session. The property is defined on the [onlineMeetingBase](/graph/api/resources/onlinemeetingbase?view=graph-rest-beta&preserve-view=true) resource and uses the [onlineMeetingType](/graph/api/resources/onlinemeetingbase?view=graph-rest-beta&preserve-view=true#onlinemeetingtype-values) enumeration. +- Use the **cloudVideoInteropInfo** property on [onlineMeeting](/graph/api/resources/onlinemeeting?view=graph-rest-beta&preserve-view=true) and [virtualEventSession](/graph/api/resources/virtualeventsession?view=graph-rest-beta&preserve-view=true) to get the conferencing device integration settings for [Cloud Video Interop](/microsoftteams/cloud-video-interop). + ### Teamwork and communications | Shift management The **timeZone** property of the [schedule](/graph/api/resources/schedule?view=graph-rest-beta&preserve-view=true) resource must be set to an IANA time zone name, such as `America/Chicago` or `Europe/London`. For more information, see [Create or replace schedule](/graph/api/team-put-schedule?view=graph-rest-beta&preserve-view=true).‎ +### Tenants | Cross-tenant migration + +[Validate](/graph/api/crosstenantmigrationjob-validate?view=graph-rest-beta&preserve-view=true) and [migrate](/graph/api/crosstenantmigrationjob-migrate?view=graph-rest-beta&preserve-view=true) a [cross-tenant migration job](/graph/api/resources/crosstenantmigrationjob?view=graph-rest-beta&preserve-view=true) asynchronously. A previously created job must pass validation before migration can start. + ### Tenants | Tenant governance Added the **groupDisplayName** property to the [delegatedAdministrationRoleAssignment](/graph/api/resources/tenantgovernanceservices-delegatedadministrationroleassignment?view=graph-rest-beta&preserve-view=true) and [delegatedAdministrationRoleAssignmentSnapshot](/graph/api/resources/tenantgovernanceservices-delegatedadministrationroleassignmentsnapshot?view=graph-rest-beta&preserve-view=true) resources. This property surfaces the display name of the security group inline, so consumers don't need to make a separate Microsoft Graph `/groups/{id}` call to resolve it. @@ -108,6 +140,7 @@ Added the **groupDisplayName** property to the [delegatedAdministrationRoleAssig Application permissions for the [user: translateExchangeIds](/graph/api/user-translateexchangeids?view=graph-rest-beta&preserve-view=true) API are supported only for request URLs that identify a user in the path. + ## May 2026: New and generally available ### Agents @@ -250,6 +283,7 @@ Added support for `$expand` on the **items** relationship of the [teamworkSectio ### Tenants | Cross-tenant access +Use the **sensorTypes** property on [sensorCandidate](/graph/api/resources/security-sensorcandidate?view=graph-rest-beta&preserve-view=true) to get the list of device types for the sensor. Added the following properties and their associated complex types to the [crossTenantAccessPolicyConfigurationDefault](/graph/api/resources/crosstenantaccesspolicyconfigurationdefault?view=graph-rest-beta&preserve-view=true) and [crossTenantAccessPolicyConfigurationPartner](/graph/api/resources/crosstenantaccesspolicyconfigurationpartner?view=graph-rest-beta&preserve-view=true) resources of cross-tenant access policy APIs to support Microsoft 365 collaboration and app service connect settings: - **appServiceConnectInbound** property to get or set the default or partner-specific configuration for inbound app service connect settings. - **m365CollaborationInbound** property to get or set the default or partner-specific configuration for inbound Microsoft 365 collaboration settings.