Identify applications using Exchange Online OutlookRESTv2 or Exchange Web Services (EWS) APIs

Hi,

Please you clarify exactly what needs to be run in regard to these scripts to identify what is in scope of the Outlook REST v2 API decommission on March 31st, 2024.

In regards to the Sample Script to exporting API Permissions assigned in Azure Active Directory - https://github.com/DirkBuntinx/Export-RBAC-for-Applications-Permissions

There are several the switches for running the script that query permissions for specific API's:

• OutlookRESTv2
• EWS
• Graph
• O365MgmtAPI
• POP
• IMAP
• SMTP
• ReportingServices
• ExchangePowerShell

My assumption is that the OutlookRESTv2 switch is what identifies App registrations that are using API's that are in scope of the Outlook REST v2 API decommissioning.

So if I run the following the script as follows it will report everything in scope:

.\Export-AppReg_APIPermissions_v1.0.ps1 -UsePSModule:AzureAD -ExportAPIPermissions: OutlookRESTv2 -OutputPath: .\

The other switches are either related to the Exchange Web Services (EWS) API that will be retired on October 1 2026, or for identifying other API's being used that are not in scope of either change.

Please can you confirm if my assumptions are correct?

In regard to the Sample Script to export the API permissions assigned using RBAC for Application in Exchange Online - https://github.com/DirkBuntinx/Export-RBAC-for-Applications-Permissions.

This is for the not required for the scope of Outlook REST v2 API decommission on March 31st, 2024, it is only for the EWS API retirement in 2026, hence I do not need to run this?

Best regards

Owain