Hi @Joseph Hoang · Thank you for reaching out.
- ADAL and MSAL are authentication libraries that you use in your application code to federate with Azure AD for authentication.
- Azure AD Graph API and Microsoft Graph API are the APIs that your application(s) can use to create/read/update/delete information in Azure AD.
You need to check your application(s) code to identify how those are federated with Azure AD and which Graph API the application(s) are configured to use. As of now Azure AD supports all of these, you need to check which ones are being used by your applications.
The only change that you would need to make in the tenant, is for the applications which are using Azure AD Graph API.
- The first step is to identify which applications are using Azure AD Graph API so that you can check the Client ID (App ID) configured for those applications.
- Under Azure AD > App Registration > search with the Client ID and replace Azure AD Graph API permissions with Microsoft Graph API permissions under API Permissions blade of those applications.
Read more:
Migrate apps from ADAL to MSAL
Azure AD Graph API to Microsoft Graph API migration checklist
-----------------------------------------------------------------------------------------------------------
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.