Reputation: 119
Update User details using MsGraph API (Patch)
I have tried to update user details by using both App-only authorization flow and delegated authorization flow(sign in get authorization code and then get the access token).
Action: Update onPremisesImmutableId of federated user,
- Update UPN of the federated users (this fails)
- Update onPremisesImmutableId
Please find the details of the request below,
PATCH https://graph.microsoft.com/v1.0/users/xxxxx@xxxxx.com
Content-Type: application/json
Accept: application/json
AUTHORIZATION: Bearer
Host: graph.microsoft.com
Content-Length: 150
Expect: 100-continue
{"userPrincipalName":"xxxxxx@xxxxx.onmicrosoft.com", passwordProfile": { "forceChangePasswordNextSignIn": false, "password":"testTest1234" }}
Response:
{ "error": { "code": "Authorization_RequestDenied", "message": "Insufficient privileges to complete the operation.", "innerError": { "request-id": "d25b7047-0cd0-46da-b77e-c7225bd030c5", "date": "2016-03-22T16:47:17" } } }
can anyone please let me know which application permission to be set so this could work? Also do we have list of things which we can or cannot perform using app-only authorization flow.
Any help would be appreciated.
Upvotes: 1
Views: 468
Answers (1)
Reputation: 879
Currently, resetting password can only be done in delegated flow. Ensure that "Access directory as the signed in user" permission is requested by your application.
Upvotes: 1
Related Questions
- Access OneDrive Directories and files using MSGraph API with client Authentication
- microsoft graph get access token that can be use to get user's calender
- Call Microsoft Graph API to get user in Azure AD B2C
- Bad Request 400 when making API call to Microsoft Graph
- Getting code=OrganizationFromTenantGuidNotFound while updating group using Microsoft Graph
- Create calendar event using Microsoft Graph: ErrorAccessDenied
- PATCH user request with birthday or hireDate returns 500 error
- Can't update profilePhoto with Microsoft Graph API