Update User Password Profile API - Insufficient Privileges Error

Chowdhury, Urvashi 1 Reputation point


I'm trying to update User Password Profile using the https://learn.microsoft.com/en-us/graph/api/user-update?view=graph-rest-1.0&tabs=http&source=docs

I've provided the authenticating AD App, with Application type permission for: User.EnableDisableAccount.All, User.ReadWrite.All, Directory.ReadWrite.All.
However, I keep getting Insufficient Privileges permission. Please note, I do use the same authenticating app for User creation too.

Appreciate your help here!

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
10,446 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Chowdhury, Urvashi 1 Reputation point

    Got the answer. It needed User Administrator role assigned!

    0 comments No comments

  2. CarlZhao-MSFT 36,336 Reputation points

    Hi @Chowdhury, Urvashi

    Yes, the logged in user or application must have the User Administrator role to change another user's password. If you want to change the password of an administrator user, the logged-in user or application must have the Global Administrator role.

    Have the same problem here.

    Hope this helps.

    If the reply is helpful, please click Accept Answer and kindly upvote it. If you have additional questions about this answer, please click Comment.

    0 comments No comments