Add device to Azure AD Group

Question

Add device to Azure AD Group

Tim Nielsen 21

I want to add a list of devices to a specific group in azure AD via the graph API.

I already have a list of both Device ID's and AADDeviceID's, but this endpoint only accepts objectids:
https://learn.microsoft.com/en-us/graph/api/group-post-members?view=graph-rest-1.0&tabs=http

So my question is, how do I get the ObjectID from Graph API

Bonus info:
This dosn't accept DeviceID
https://learn.microsoft.com/en-us/graph/api/device-get?view=graph-rest-1.0&tabs=http

Answer 1

Vasil Michev 71,626 MVP

The value you need is the "id", as returned from the GET /devices endpoint. Then pass the value in a /members/$ref POST request:

GET https://graph.microsoft.com/v1.0/devices?$select=displayName,id  
  
POST https://graph.microsoft.com/v1.0/groups/0d79d876-83a9-4845-bed8-a65e7633fb1b/members/$ref  
{  
    "@odata.id": "https://graph.microsoft.com/v1.0/directoryObjects/3cfaf4c5-4c2c-4f34-b160-6748e45b2c49"  
}

Tim Nielsen 21 Reputation points

2022-10-26T11:38:01.307+00:00

Thank you
But I only want specific devices in that group.
If I send a GET to /devices I get all devices in our env

Edit: I'm not able to loop through the output of /devices since don't know the DisplayName for VM's,
As mentioned before i only have the Device and -AADDeviceId's
Vasil Michev 71,626 Reputation points MVP

2022-10-26T12:33:33.077+00:00

The above is just an example mate, replace it with whichever property you want to work with. I.e. $select=id,DeviceId will return both the object ID to pass to the group members endpoint, and the deviceID you have.
Tim Nielsen 21 Reputation points

2022-10-26T12:45:35.887+00:00

Of course, makes sense - Thank you!

Add device to Azure AD Group

0 additional answers

Activity