Reputation: 45
Add User as owner of Azure AD Group through REST API
Is it possible to add the owner to the Azure AD group from any REST API?
I think I should have one service principal and I have to generate an access token to do that.
I tried to generate access token and used below query to add owner via Postman.
https://graph.microsoft.com/v1.0/groups/groupid/owners/$ref
But I am facing 403 Forbidden error like below:
{ "error": { "code": "Authorization_RequestDenied", "message": "Insufficient privileges to complete the operation.", "innerError": { "date": "2022-06-29T05:42:38", "request-id": "ebd01257-b890-4b3d-8c22-a1b34738e5a6", "client-request-id": "ebd01257-b890-4b3d-8c22-a1b34738e5a6" } }
I have granted API permissions like below:
What else permissions are needed? Is there any other way instead of Postman?
Upvotes: 1
Views: 876
Answers (1)
Reputation: 22442
You can make use of Microsoft Graph Explorer instead of Postman that doesn't require you to generate access token separately.
You can call the same query by granting below permissions based on your account type:
I tried to reproduce the same in my environment and added the owner to the Azure AD group like below:
After running the above query, owner added successfully like below:
To confirm the above, check the portal whether the owner is added or not like below:
Reference:
Add owners - Microsoft Graph v1.0 | Microsoft Docs
Upvotes: 1
Related Questions
- Adding a user to Azure AD group via graph api
- REST API for adding Enterprise Application's owner in AAD
- Adding an AAD group to Azure DevOps using the rest api
- Add an Azure AD user to a Azure DevOps project group using Azure Logic Apps
- Adding a Group as a member of a Group using Azure Graph API
- Programatically Add users to group in AzureAD as group owner
- Adding User to Group using Graph API B2C
- Adding members to a Group as a Group Owner in Azure Portal for an Azure AD tenant
- [Azure AD]: User Group Assign Owner
- Windows Azure Graph AD Creating Group using Rest API