Adding Scopes to a registered Service Principal

Ivan Zeljkovic 40 Reputation points
2024-05-09T19:34:17.8433333+00:00

Hi there,

We have a registered Service Principal (Enterprise Application) being used by several users granting us delegated permissions.

We'd like to add an additional application (not delegated) permission to this service principal. For context, it is the CallRecords.Read.All permission.

My question is, how would this affect existing users, and our service principal? I couldn't find any documentation, but I'm curious if this would cause their existing tokens to invalidate, or would they continue working with the original scopes granted before we added an additional one.

Additionally, is it fine to have a service principal with delegated & application API permissions? I'd assume yes for this one.

Appreciate any help, thanks.

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
10,837 questions
0 comments No comments
{count} votes

0 additional answers

Sort by: Most helpful