Sep 12 2017 02:10 PM - edited Sep 12 2017 02:10 PM
I am trying to implement an job using SharePoint user profile bulk update API and would like to run on schedule basis with 'App Only' permissions. I am able to connect to SharePoint online but get access denied for the operation 'QueueImportProfileProperties' even though I grant it tenant admin rights.
Can someone tell me what permissions do I grant with Client Id on sharepoint or Azure AD to use the bulk import API with App Only permissions.
May 02 2018 10:14 AM
Wondering the same, did you find out?
Jun 28 2018 12:33 PM
Yes, I was able to implement using app only permissions. In order to connect to the import api, we would need to grant the app principal admin rights on the social API. You will need to navigate to the sharepoint online admin center and then navigate to the app permission page (_layouts/15/appinv.aspx). Use the below permission xml which grants tenant admin rights and admin rights on social api.
<AppPermissionRequests AllowAppOnlyPolicy="true" >
<AppPermissionRequest Scope="http://sharepoint/content/tenant" Right="FullControl" />
<AppPermissionRequest Scope="http://sharepoint/social/tenant" Right="FullControl" />
</AppPermissionRequests>
Jul 09 2018 09:02 AM
I would suggest make a connection using Admin credential and start processing: this will help: https://docs.microsoft.com/en-us/sharepoint/dev/solution-guidance/bulk-user-profile-update-api-for-s...