Impact on Retirement of RBAC Application Impersonation in Exchange

Yasitha Pandithawatta 141 Reputation points
2024-04-09T06:16:20.71+00:00

We have noticed the announcement of Retirement of RBAC Application Impersonation in Exchange here

We would like to clarify few things as I am not sure this retirement will affect our current implementation.

We use Exchange.ManageAsApp application permission in a azure ad muti tenant application, and then we create a custom role group with required management roles with required cmdlets and assign created custom role group to the application using service principal as described here.

We would like to know whether this retirement has any impact on above implementation?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,652 questions
{count} votes

Accepted answer
  1. Vasil Michev 105.5K Reputation points MVP
    2024-04-09T07:27:05.9466667+00:00

    You should not be affected, nothing is changed in terms of support for the Exchange.ManageAsApp permission. The changes Microsoft is introducing are specific to the ApplicationImpersonation role within Exchange Online.

    In any case, the best place to ask questions such as this one is over at the MTC, in the comments section of the announcement article you linked to above.

    1 person found this answer helpful.
    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.