cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Add application permission support to Delete AAD devices

Add application permission support to Delete AAD devices
30

Upvotes

Upvote
 Oct 29 2021
6 Comments (6 New)
New

Add application permission support to Delete AAD devices.

 

This is currently not supported when used with application authentication: https://docs.microsoft.com/en-us/graph/api/device-delete?view=graph-rest-beta&tabs=http

 

$AuthToken = Get-MsalToken -ClientId $ClientId -TenantId $TenantId -ClientCertificate $ClientCertificate

$ResourceUrl = "https://graph.microsoft.com/beta/devices/{id}"
Invoke-RestMethod -Headers @{Authorization = "Bearer $($AuthToken.AccessToken)"} -Uri $ResourceUrl -Method Delete

 

or

 

Remove-MgDevice -DeviceId {id}

Comment
Comments
MauriceMoeliker
Occasional Visitor
‎Oct 29 2021 07:53 AM
‎Oct 29 2021 07:53 AM

Would be nice to be able to have this functionality in Azure Automation implemented with Application Identities.

Christophe Barneaud
Occasional Contributor
‎Jun 01 2022 06:21 AM
‎Jun 01 2022 06:21 AM

HI,

Maj 2022 and it still not implemented. 

 

dioselmios
Senior Member
‎Jul 29 2022 06:30 AM
‎Jul 29 2022 06:30 AM

Same goes for Update-MgDevice. Only delegated permissions work.

AaronHall
Senior Member
‎Aug 24 2022 09:09 AM
‎Aug 24 2022 09:09 AM

How is it that we're less than a month away from Microsoft killing off Azure AD Graph API and they STILL haven't fixed/reproduced basic functionality that exists in older module versions?

 

This issue isn't the only one plaguing me this week... I've also had to deal with the PITA cmdlet Get-MgUserRegisteredDevice that doesn't produce the same output as Get-AzureADUserRegisteredDevice. Instead I have to do some really funky filtering to get the info I need in a less usable format.

 

C'mon, Microsoft, get on it!

PetersDev
Occasional Visitor
‎Dec 07 2022 01:09 PM
‎Dec 07 2022 01:09 PM

Checking in at almost 2023 and this feature has yet to be added.

Nathan Hartley
Contributor
‎Jan 20 2023 11:47 AM
‎Jan 20 2023 11:47 AM

Guess that we will have to switch back to using the AzureAD module, until Microsoft kills its API layer. Then we will have to switch back to typewriters.

 

I am also affected by Update-MgDevice not supporting Application identities.

Similar Ideas
No similar ideas