Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Namespace: microsoft.graph
Update the properties of an endUserSettings object that controls the end user experience for access package suggestions and resource discovery.
Permissions
Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions only if your app requires it. For details about delegated and application permissions, see Permission types. To learn more about these permissions, see the permissions reference.
| Permission type | Least privileged permissions | Higher privileged permissions |
|---|---|---|
| Delegated (work or school account) | EntitlementManagement.ReadWrite.All | Not available. |
| Delegated (personal Microsoft account) | Not supported. | Not supported. |
| Application | EntitlementManagement.ReadWrite.All | Not available. |
Tip
For delegated access using work or school accounts, the signed-in user must be assigned an administrator role with supported role permissions through one of the following options:
- A Microsoft Entra role where the least privileged role is Identity Governance Administrator. This is the least privileged option.
In app-only scenarios, the calling app can be assigned one of the preceding supported roles instead of the EntitlementManagement.ReadWrite.All application permission. The Identity Governance Administrator role is less privileged than the EntitlementManagement.ReadWrite.All application permission.
For more information, see Delegation and roles in entitlement management and how to delegate access governance to access package managers in entitlement management.
HTTP request
PUT /identityGovernance/entitlementManagement/controlConfigurations/endUserSettings
Request headers
| Name | Description |
|---|---|
| Authorization | Bearer {token}. Required. Learn more about authentication and authorization. |
| Content-Type | application/json. Required. |
Request body
In the request body, supply a JSON representation of the endUserSettings object.
The following table shows the properties that are required when you update the endUserSettings.
| Property | Type | Description |
|---|---|---|
| relatedPeopleInsightLevel | accessPackageSuggestionRelatedPeopleInsightLevel | The level of related people insights to show in access package suggestions. The possible values are: disabled, count, countAndNames, unknownFutureValue. |
| showApproverDetailsToMembers | Boolean | Indicates whether approver details are shown to members. When true, approver information is visible to members. |
Response
If successful, this method returns a 200 OK response code and an updated endUserSettings object in the response body.
Examples
Request
The following example shows a request.
PUT https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/controlConfigurations/endUserSettings
Content-type: application/json
{
"@odata.type": "#microsoft.graph.endUserSettings",
"relatedPeopleInsightLevel": "countAndNames",
"showApproverDetailsToMembers": true
}
Response
The following example shows the response.
Note: The response object shown here might be shortened for readability.
HTTP/1.1 200 OK
Content-type: application/json
{
"@odata.context": "https://graph.microsoft.com/v1.0/$metadata#identityGovernance/entitlementManagement/controlConfigurations/endUserSettings",
"relatedPeopleInsightLevel": "countAndNames",
"showApproverDetailsToMembers": true
}