Get-AzureADMSPermissionGrantConditionSet
This article provides migration details from Get-AzureADMSPermissionGrantConditionSet command to Microsoft Graph PowerShell.
Summary
- Azure AD Command: Get-AzureADMSPermissionGrantConditionSet
- Azure AD Module: AzureAD
- Microsoft Graph Command: Get-MgPolicyPermissionGrantPolicyInclude (Community Examples)
- Graph Module: Microsoft.Graph.Identity.SignIns
- Graph Endpoint: GET /policies/permissionGrantPolicies/{permissionGrantPolicy-id}/excludes | /policies/permissionGrantPolicies/{permissionGrantPolicy-id}/excludes/{permissionGrantConditionSet-id} | /policies/permissionGrantPolicies/{permissionGrantPolicy-id}/includes | /policies/permissionGrantPolicies/{permissionGrantPolicy-id}/includes/{permissionGrantConditionSet-id}
Permissions
| Permission type | Least privileged permissions | Higher privileged permissions |
|---|---|---|
| Delegated (work or school account) | Policy.Read.PermissionGrant | Directory.Read.All |
| Delegated (personal Microsoft account) | Not supported. | Not supported. |
| Application | Policy.Read.PermissionGrant | Directory.Read.All |
Property Mapping
| Azure AD Name | Microsoft Graph Name |
|---|---|
| ConditionSetType | NA |
| Id | PermissionGrantConditionSetId |
| PolicyId | PermissionGrantPolicyId |
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for