Event banner

Ask Microsoft Anything: Discover the Microsoft Entra Suite

Event Ended

Wednesday, Aug 14, 2024, 07:30 AM PDT

Online

Event details

Ask Microsoft Anything…about the Microsoft Entra Suite! Join our panel of experts with your questions about unifying Conditional Access policies for identities and networks, and ensuring least privil...

Updated May 14, 2025

Copper Contributor

Aug 14, 2024

Dear Team, with transition from AzureAD to EntraID, Microsoft is also promoting to migrate to MS Graph API for the automations. The permissions that are granted via Graph API are tenant wide and cannot be restricted to limited objects on EntraID. My question is that how can we limit Graph API permissions to specific objects so that the possible attack surface decreases in case of security incident? Thank you.

tdetzner
Microsoft
Aug 14, 2024
Great to hear that you are moving to Entra ID. Here are few resources, that should help: https://learn.microsoft.com/en-us/entra/identity-platform/permissions-consent-overview https://github.com/kylemar/Microsoft-identity-platform-training#microsoft-identity-platform-training

Date and Time

Aug 14, 20247:30 AM - 8:00 AM PDT