Forum Discussion
Update SPO User Profile Properties with Azure AD AppOnly
Is it possible to update user profile properties in SharePoint Online using an Azure AD app for authentication/authorization? I am trying to authenticate to SharePoint using this PnP method Authentic...
You need an SP app with full tenant permissions + write to upa for this to work. Not possible with an AAD app today, at least last time I tried.
Thanks for the response!
I found that the app only needs to have 'Manage' rights to the user profile if using a SharePoint App.
<AppPermissionRequests AllowAppOnlyPolicy="true">
<AppPermissionRequest Scope="http://sharepoint/social/tenant" Right="Manage" />
</AppPermissionRequests>
And to use a service account, the user only needs to have the SharePoint Administrator role. They don't need to have any product licenses in SharePoint Online.
I found that the app only needs to have 'Manage' rights to the user profile if using a SharePoint App.
<AppPermissionRequests AllowAppOnlyPolicy="true">
<AppPermissionRequest Scope="http://sharepoint/social/tenant" Right="Manage" />
</AppPermissionRequests>
And to use a service account, the user only needs to have the SharePoint Administrator role. They don't need to have any product licenses in SharePoint Online.
- My bad.. remebered it wrong. But glad you figured it out :)