Jul 22 2024 09:41 AM
According to this link I can disable SSPR for Administrators.
However, upon attempting to do so I am met with the following error.
S C:\Windows\System32> Update-MgPolicyAuthorizationPolicy -AllowedToUseSspr:$false
Update-MgPolicyAuthorizationPolicy_UpdateExpanded: Insufficient privileges to complete the operation.
Status: 403 (Forbidden)
ErrorCode: Authorization_RequestDenied
Date: 2024-07-22T16:28:11
Jul 22 2024 11:23 AM - edited Jul 22 2024 11:23 AM
Hi @ProgentCT ,
I would request to try you to please provide "Policy.ReadWrite.Authorization" permission to user executing this command. This is documented in the equivalent Graph API article: Update authorizationPolicy.
Connect-MgGraph -scopes "Policy.ReadWrite.Authorization"
Update-MgPolicyAuthorizationPolicy -AllowedToUseSspr:$false
Jul 23 2024 10:51 AM