Minimum Permissions for Azure AD Powershell

%3CLINGO-SUB%20id%3D%22lingo-sub-229116%22%20slang%3D%22en-US%22%3EMinimum%20Permissions%20for%20Azure%20AD%20Powershell%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-229116%22%20slang%3D%22en-US%22%3E%3CP%3EWhat%20is%20the%20minimum%20permission%2Frole%20that%20a%20user%20needs%20to%20Get%20data%20from%20Azure%20AD%20with%20PowerShell%3F%20to%20write%20data%3F%3C%2FP%3E%3CP%3ETIA%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-229116%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%20AD%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-229176%22%20slang%3D%22en-US%22%3ERe%3A%20Minimum%20Permissions%20for%20Azure%20AD%20Powershell%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-229176%22%20slang%3D%22en-US%22%3E%3CP%3EBy%20default%20anyone%20in%20the%20organization%20can%20connect%20with%20AAD%2FMSOL%20PowerShell%20and%20%22read%22%20data.%20You%20can%20control%20this%20via%20the%20%22UsersPermissionToReadOtherUsersEnabled%22%20setting.%26nbsp%3BFor%20%22write%22%2C%20he%20needs%20to%20have%20one%20of%20the%20admin%20roles%20assigned.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1543767%22%20slang%3D%22en-US%22%3ERe%3A%20Minimum%20Permissions%20for%20Azure%20AD%20Powershell%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1543767%22%20slang%3D%22en-US%22%3EMinimum%20role%20required%20for%20Add-MsolRoleMember%20cmdlet%3C%2FLINGO-BODY%3E
Highlighted
Respected Contributor

What is the minimum permission/role that a user needs to Get data from Azure AD with PowerShell? to write data?

TIA

2 Replies
Highlighted

By default anyone in the organization can connect with AAD/MSOL PowerShell and "read" data. You can control this via the "UsersPermissionToReadOtherUsersEnabled" setting. For "write", he needs to have one of the admin roles assigned.

Minimum role required for Add-MsolRoleMember cmdlet