No ideas on this? Is there absolutely no possibility to do that programatically?

$tenantId = $args[0]
$appName = $args[1]
$subscriptionId = $args[2]
$secret = $args[3]
$cert = $args[4]

$replyUrl = "https://www.kofax.com/products/mobile-capture-platform"

Connect-AzAccount -Tenant $tenantId -Subscription $subscriptionId

$graphId='"00000003-0000-0000-c000-000000000000"'

$printerCreate = '"90c30bed-6fd1-4279-bf39-714069619721"'
$item5 = @"
{"id": $printerCreate,"type": "Scope"}
"@
$printJobManageAll='"58a52f47-9e36-4b17-9ebe-ce4ef7f3e6c8"'
$item9 = @"
{"id": $printJobManageAll,"type": "Role"}
"@

$printTaskDefinition='"456b71a7-0ee0-4588-9842-c123fcc8f664"'

$itemA = @"
{"id": $printTaskDefinition,"type": "Role"}
"@
$resources = @"
[{ "resourceAppId": $graphId, "resourceAccess": [$item5,$item9,$itemA]}]
"@ | ConvertTo-Json

$myApiAppRegistration = az ad app create --display-name $appName --password $secret --reply-urls $replyUrl --required-resource-accesses $resources --available-to-other-tenants false
$myApiAppRegistrationResult = ($myApiAppRegistration | ConvertFrom-Json)
$appId=$myApiAppRegistrationResult.appId
$objectId=$myApiAppRegistrationResult.objectId
$secret=$myApiAppRegistrationResult.passwordCredentials