This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(22.400000000000002, 8%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
Greetings,
I am trying to create an Azure Access Review which includes both members and owners for the review process, where the group owners are also the reviewer in said Access Review. Since there are over 500+ groups in our tenant, I am using Microsoft Graph to automate this using a powershell script.
When I use the members value in the request body, everything works out fine, but when I use owners in the request body, I get a weird result which I was able to replicate using the MS Graph Explorer.
Link to the MS Graph Explorer: Graph Explorer | Try Microsoft Graph APIs - Microsoft Graph
You got to consent under the Modify permissions tab
As an exercise, I used the MS Graph explorer for the following:
Best Case Scenario
POST (beta): https://graph.microsoft.com/beta/identityGovernance/accessReviews/definitions
Request Body:
{
"displayName": "Group Members Access Review",
"descriptionForAdmins": "Reviews access to all group members in the organization",
"reviewType": "AccessReview",
"scope": {
"query": "/groups/{group id}/members",
"queryType": "MicrosoftGraph"
}
}
Note: Gotta export the group id and place it in the Request Body
Result is:
The access review is successfully created in Azure. You can see it in the GUI on the web.
=====================
Bad Case Scenario
POST (beta): https://graph.microsoft.com/beta/identityGovernance/accessReviews/definitions
Request Body:
{
"displayName": "Group Owners Access Review",
"descriptionForAdmins": "Group owners in the organization",
"reviewType": "AccessReview",
"scope": {
"query": "/groups/{group id}/owners",
"queryType": "MicrosoftGraph"
}
}
The result is:
{
"error": {
"code": "",
"message": "PartnerData | Partner Record with Id 00000000-0000-0000-0000-000000000000 not found in repository",
"innerError": {
"date": "2023-08-18T16:17:48",
"request-id": "{request id auto-generated}",
"client-request-id": "{client-request-id auto-generated}"
}
}
}
I don’t have this PartnerData in my tenant, but I get the feeling this is something from within Graph API maybe.
All I simply want to do is create an access review that includes both group members and owners.
Any ideas?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 3%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET4%3C/text%3E%3C/svg%3E)
Hello Daemetius,
Thanks for reaching out. For any queries related to Graph beta API I would suggest posting your query on the Graph FeedBack Forum .Can you reproduce the issue with the v1.0 Graph API?
Thanks.