Forum Discussion
Can we scope GraphAPI "OnlineMeetings.ReadWrite.All" "Application" type permission to specific user?
A 3rd party app which we are trying to integrate for queue management system needs below permission:
Permission Name: Graph API "OnlineMeetings.ReadWrite.All"
Permission Type: Application Permission
for security reason and having multiple BU users in one single tenant, I want to limit/restrict this application to have this permission only on specific users, can I scope this to a group or users?
2 Replies
- You can follow the steps here: https://learn.microsoft.com/en-us/graph/cloud-communication-online-meeting-application-access-policy
Thanks VasilMichev
- Created an App in Azure app registration
- Assigned below graph api permission:
API / Permission Name Type
OnlineMeetings.ReadWrite.All Application
- Created new CsApplicationAccessPolicy with the above app ID:
• New-CsApplicationAccessPolicy -Identity "PolicyName" -AppIds "APP ID" -Description "Teams meeting creation."
- Scoped the above policy to the service account:
• Grant-CsApplicationAccessPolicy -PolicyName "PolicyName" -Identity "SERVICE ACCOUNT USER OBJECT ID"
