![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 62%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EW%3C/text%3E%3C/svg%3E)
25,151 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 20%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Hi @webkorps ,
Thanks for reaching out and apologies for delay in response.
I understand that you are looking to retrieve limited properties of user details rather that full profile of signed-in-user.
User.Read.All permission allows you to read full set of profile properties, reports, and managers of other users in your organization, on behalf of the signed-in user.
If you want to get selected properties of user in your response, you can achieve that using $select query to retrieve required properties.
https://graph.microsoft.com/v1.0/users?$select=displayName,mail
If there is a requirement to read only basic profile of the user. Then Azure AD provides User.ReadBasic.All permission as well to constrains app access to a limited set of properties known as the basic profile. This is because the full profile might contain sensitive directory information. The basic profile includes the following properties:
displayName
givenName
mail
photo
surname
Hope this will help.
Thanks,
Shweta
-----------------------------------------
Please remember to "Accept Answer" if answer helped you.