Assigning Owner to Application Registration and Enterprise Application using PowerShell?

Question

How can I use Microsoft PowerShell script to assign an Application or Service principal in Azure to a single user?

I have a list of the application names in a TXT file like below:

App1
WebApplication1
CloudApps1
....
App-X

However, when browsing the page I cannot find the cmdlet to add a set or even update:

• https://learn.microsoft.com/en-us/powershell/module/Microsoft.Graph.Beta.Applications/Get-MgBetaApplicationOwner?view=graph-powershell-beta

https://learn.microsoft.com/en-us/powershell/module/microsoft.graph.applications/get-mgapplicationowner?view=graph-powershell-1.0

Thank you in advance,

Answer 1

Hi @EnterpriseArchitect

You can run the New-MgApplicationOwnerByRef cmdlet to add an owner to the target app.

Import-Module Microsoft.Graph.Applications

$params = @{
	"@odata.id" = "https://graph.microsoft.com/v1.0/directoryObjects/{user id}"
}

New-MgApplicationOwnerByRef -ApplicationId $appObjectId -BodyParameter $params

Or run the Remove-MgApplicationOwnerByRef cmdlet to remove the app owner.

Hope this helps.

If the reply is helpful, please click Accept Answer and kindly upvote it. If you have additional questions about this answer, please click Comment.

Answer 2

Hi @EnterpriseArchitect

Thank you for posting this in Microsoft Q&A.

Adding to the above information provided by CarlZhao-MSFT.To add an owner to an Enterprise application using Microsoft Graph PowerShell.

Connect-MgGraph -Scopes 'Application.ReadWrite.All'

$owner = @{ 
"@odata.id" = "https://graph.microsoft.com/v1.0/directoryObjects/{id}"
 } 

New-MgServicePrincipalOwnerByRef -ServicePrincipalId $servicePrincipalId -BodyParameter $owner

To get owners of the Enterprise Application use Get-MgServicePrincipalOwnerByRef

To get owners of the Application Registration use Get-MgApplicationOwnerByRef

Hope this helps. Do let us know if you any further queries.

Thanks,

Navya.