User.ReadBasic.All Archives - Office 365 for IT Pros

Entra ID Introduces New Graph Permissions for User Accounts

Posted on February 4, 2025January 29, 2025 by Tony Redmond

Graph permissions for user accounts. Graph permissions to manage Entra ID accounts.

A set of new granular Graph permissions for User account management is now available to handle common operations like changing account passwords or updating phone numbers. There’s no need to update existing code unless you want to use the principle of lease privilege, in which case you’ll replace the current permissions with the new permissions. My feeling is that relatively few will go update code, but I could be surprised.

Graph User.ReadBasic.All Application Permission Available

Posted on January 30, 2024January 30, 2024 by Tony Redmond

The Graph User.ReadBasic.All permission is now available for both delegated and application usage. Think before rushing to use the permission. Although the permission does what it sets out to do, the restriction on filtering means that many scenarios need the full User.Read.All permission.