Reputation: 5727
Adding Users to the AAD Group via MS Graph
I am trying to add users to the AD Group via MS Graph API using application permission, and can't give GroupMamber.ReadwriteAll permission as this will allow app registration to add people to any group which is a security concern. My app registration is the owner of the AAD group.
Any help is much appreciated.
Thanks.
Upvotes: 0
Views: 733
Answers (1)
Reputation: 22242
Please note that, to add users to the Azure AD Group via MS Graph API, you must have one of the below permissions as mentioned in this MsDoc.
Without having at least one of the above permissions, you cannot add users to the Azure AD group.
I assigned the app as owner of the group like below:
I tried to add users to the Azure AD group without granting any of the above permissions and got the error like below:
After granting the required permission, I was able to add the user to Azure AD group successfully like below:
Upvotes: 1
Related Questions
- Adding a user to Azure AD group via graph api
- How to add members to a Group using Microsoft Graph API
- Assign AAD administrative roles to AAD group
- Microsoft Azure AD Graph API to add member to a group
- Adding a Group as a member of a Group using Azure Graph API
- Graph api url to add members into azure active directory security group
- Adding User to Group using Graph API B2C
- AAD graph API - add Microsoft accounts
- How to Add users to Azure Active Directory with Graph API
- Can't add member to a group in Azure Active Directory through Graph API