Application Graph Permission User.RevokeSessions.All

Luca Tenti 20 Reputation points


as steated in thefolowing link

Invalidate Sign-in session in Azure with powershell is possible using command Revoke-MgUserSignInSession that requires a graph permission called User.RevokeSessions.All

But this permission is not present on azure portal so I can't associate it to my app.

How to manage this grant and link it to my application?

Thank you.

Best regards

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
11,124 questions
0 comments No comments
{count} votes

Accepted answer
  1. Yakun Huang-MSFT 1,405 Reputation points Microsoft Vendor

    Hi @Luca Tenti

    After searching, we do not find User.RevokeSessions.All permission in the Graph permission list, nor in the Permission reference, which may not have been published yet and is currently only in preview status.

    If you need to use this endpoint, it is recommended that you grant the application a higher application permission User.ReadWrite.All, which in our tests is valid.

    User's image

    Hope this helps.

    If the reply is helpful, please click Accept Answer and kindly upvote it. If you have additional questions about this answer, please click Comment.

0 additional answers

Sort by: Most helpful