Create iosEasEmailProfileConfiguration
Namespace: microsoft.graph
Important: Microsoft Graph APIs under the /beta version are subject to change; production use is not supported.
Note: The Microsoft Graph API for Intune requires an active Intune license for the tenant.
Create a new iosEasEmailProfileConfiguration object.
This API is available in the following national cloud deployments.
| Global service | US Government L4 | US Government L5 (DOD) | China operated by 21Vianet |
|---|---|---|---|
| ✅ | ✅ | ✅ | ✅ |
Permissions
One of the following permissions is required to call this API. To learn more, including how to choose permissions, see Permissions.
| Permission type | Permissions (from least to most privileged) |
|---|---|
| Delegated (work or school account) | DeviceManagementConfiguration.ReadWrite.All |
| Delegated (personal Microsoft account) | Not supported. |
| Application | DeviceManagementConfiguration.ReadWrite.All |
HTTP Request
POST /deviceManagement/deviceConfigurations
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.windowsDomainJoinConfiguration/networkAccessConfigurations
Request headers
| Header | Value |
|---|---|
| Authorization | Bearer {token}. Required. Learn more about authentication and authorization. |
| Accept | application/json |
Request body
In the request body, supply a JSON representation for the iosEasEmailProfileConfiguration object.
The following table shows the properties that are required when you create the iosEasEmailProfileConfiguration.
| Property | Type | Description |
|---|---|---|
| id | String | Key of the entity. Inherited from deviceConfiguration |
| lastModifiedDateTime | DateTimeOffset | DateTime the object was last modified. Inherited from deviceConfiguration |
| roleScopeTagIds | String collection | List of Scope Tags for this Entity instance. Inherited from deviceConfiguration |
| supportsScopeTags | Boolean | Indicates whether or not the underlying Device Configuration supports the assignment of scope tags. Assigning to the ScopeTags property is not allowed when this value is false and entities will not be visible to scoped users. This occurs for Legacy policies created in Silverlight and can be resolved by deleting and recreating the policy in the Azure Portal. This property is read-only. Inherited from deviceConfiguration |
| deviceManagementApplicabilityRuleOsEdition | deviceManagementApplicabilityRuleOsEdition | The OS edition applicability for this Policy. Inherited from deviceConfiguration |
| deviceManagementApplicabilityRuleOsVersion | deviceManagementApplicabilityRuleOsVersion | The OS version applicability rule for this Policy. Inherited from deviceConfiguration |
| deviceManagementApplicabilityRuleDeviceMode | deviceManagementApplicabilityRuleDeviceMode | The device mode applicability rule for this Policy. Inherited from deviceConfiguration |
| createdDateTime | DateTimeOffset | DateTime the object was created. Inherited from deviceConfiguration |
| description | String | Admin provided description of the Device Configuration. Inherited from deviceConfiguration |
| displayName | String | Admin provided name of the device configuration. Inherited from deviceConfiguration |
| version | Int32 | Version of the device configuration. Inherited from deviceConfiguration |
| usernameSource | userEmailSource | Username attribute that is picked from AAD and injected into this profile before installing on the device. Inherited from easEmailProfileConfigurationBase. Possible values are: userPrincipalName, primarySmtpAddress. |
| usernameAADSource | usernameSource | Name of the AAD field, that will be used to retrieve UserName for email profile. Inherited from easEmailProfileConfigurationBase. Possible values are: userPrincipalName, primarySmtpAddress, samAccountName. |
| userDomainNameSource | domainNameSource | UserDomainname attribute that is picked from AAD and injected into this profile before installing on the device. Inherited from easEmailProfileConfigurationBase. Possible values are: fullDomainName, netBiosDomainName. |
| customDomainName | String | Custom domain name value used while generating an email profile before installing on the device. Inherited from easEmailProfileConfigurationBase |
| accountName | String | Account name. |
| authenticationMethod | easAuthenticationMethod | Authentication method for this Email profile. Possible values are: usernameAndPassword, certificate, derivedCredential. |
| blockMovingMessagesToOtherEmailAccounts | Boolean | Indicates whether or not to block moving messages to other email accounts. |
| blockSendingEmailFromThirdPartyApps | Boolean | Indicates whether or not to block sending email from third party apps. |
| blockSyncingRecentlyUsedEmailAddresses | Boolean | Indicates whether or not to block syncing recently used email addresses, for instance - when composing new email. |
| durationOfEmailToSync | emailSyncDuration | Duration of time email should be synced back to. . Possible values are: userDefined, oneDay, threeDays, oneWeek, twoWeeks, oneMonth, unlimited. |
| emailAddressSource | userEmailSource | Email attribute that is picked from AAD and injected into this profile before installing on the device. Possible values are: userPrincipalName, primarySmtpAddress. |
| easServices | easServices | Exchange data to sync. Possible values are: none, calendars, contacts, email, notes, reminders. |
| easServicesUserOverrideEnabled | Boolean | Allow users to change sync settings. |
| hostName | String | Exchange location that (URL) that the native mail app connects to. |
| requireSmime | Boolean | Indicates whether or not to use S/MIME certificate. |
| smimeEnablePerMessageSwitch | Boolean | Indicates whether or not to allow unencrypted emails. |
| smimeEncryptByDefaultEnabled | Boolean | If set to true S/MIME encryption is enabled by default. |
| smimeSigningEnabled | Boolean | If set to true S/MIME signing is enabled for this account |
| smimeSigningUserOverrideEnabled | Boolean | If set to true, the user can toggle S/MIME signing on or off. |
| smimeEncryptByDefaultUserOverrideEnabled | Boolean | If set to true, the user can toggle the encryption by default setting. |
| smimeSigningCertificateUserOverrideEnabled | Boolean | If set to true, the user can select the signing identity. |
| smimeEncryptionCertificateUserOverrideEnabled | Boolean | If set to true the user can select the S/MIME encryption identity. |
| requireSsl | Boolean | Indicates whether or not to use SSL. |
| useOAuth | Boolean | Specifies whether the connection should use OAuth for authentication. |
| signingCertificateType | emailCertificateType | Signing Certificate type for this Email profile. Possible values are: none, certificate, derivedCredential. |
| encryptionCertificateType | emailCertificateType | Encryption Certificate type for this Email profile. Possible values are: none, certificate, derivedCredential. |
| perAppVPNProfileId | String | Profile ID of the Per-App VPN policy to be used to access emails from the native Mail client |
Response
If successful, this method returns a 201 Created response code and a iosEasEmailProfileConfiguration object in the response body.
Example
Request
Here is an example of the request.
POST https://graph.microsoft.com/beta/deviceManagement/deviceConfigurations
Content-type: application/json
Content-length: 2187
{
"@odata.type": "#microsoft.graph.iosEasEmailProfileConfiguration",
"roleScopeTagIds": [
"Role Scope Tag Ids value"
],
"supportsScopeTags": true,
"deviceManagementApplicabilityRuleOsEdition": {
"@odata.type": "microsoft.graph.deviceManagementApplicabilityRuleOsEdition",
"osEditionTypes": [
"windows10EnterpriseN"
],
"name": "Name value",
"ruleType": "exclude"
},
"deviceManagementApplicabilityRuleOsVersion": {
"@odata.type": "microsoft.graph.deviceManagementApplicabilityRuleOsVersion",
"minOSVersion": "Min OSVersion value",
"maxOSVersion": "Max OSVersion value",
"name": "Name value",
"ruleType": "exclude"
},
"deviceManagementApplicabilityRuleDeviceMode": {
"@odata.type": "microsoft.graph.deviceManagementApplicabilityRuleDeviceMode",
"deviceMode": "sModeConfiguration",
"name": "Name value",
"ruleType": "exclude"
},
"description": "Description value",
"displayName": "Display Name value",
"version": 7,
"usernameSource": "primarySmtpAddress",
"usernameAADSource": "primarySmtpAddress",
"userDomainNameSource": "netBiosDomainName",
"customDomainName": "Custom Domain Name value",
"accountName": "Account Name value",
"authenticationMethod": "certificate",
"blockMovingMessagesToOtherEmailAccounts": true,
"blockSendingEmailFromThirdPartyApps": true,
"blockSyncingRecentlyUsedEmailAddresses": true,
"durationOfEmailToSync": "oneDay",
"emailAddressSource": "primarySmtpAddress",
"easServices": "calendars",
"easServicesUserOverrideEnabled": true,
"hostName": "Host Name value",
"requireSmime": true,
"smimeEnablePerMessageSwitch": true,
"smimeEncryptByDefaultEnabled": true,
"smimeSigningEnabled": true,
"smimeSigningUserOverrideEnabled": true,
"smimeEncryptByDefaultUserOverrideEnabled": true,
"smimeSigningCertificateUserOverrideEnabled": true,
"smimeEncryptionCertificateUserOverrideEnabled": true,
"requireSsl": true,
"useOAuth": true,
"signingCertificateType": "certificate",
"encryptionCertificateType": "certificate",
"perAppVPNProfileId": "Per App VPNProfile Id value"
}
Response
Here is an example of the response. Note: The response object shown here may be truncated for brevity. All of the properties will be returned from an actual call.
HTTP/1.1 201 Created
Content-Type: application/json
Content-Length: 2359
{
"@odata.type": "#microsoft.graph.iosEasEmailProfileConfiguration",
"id": "e03086da-86da-e030-da86-30e0da8630e0",
"lastModifiedDateTime": "2017-01-01T00:00:35.1329464-08:00",
"roleScopeTagIds": [
"Role Scope Tag Ids value"
],
"supportsScopeTags": true,
"deviceManagementApplicabilityRuleOsEdition": {
"@odata.type": "microsoft.graph.deviceManagementApplicabilityRuleOsEdition",
"osEditionTypes": [
"windows10EnterpriseN"
],
"name": "Name value",
"ruleType": "exclude"
},
"deviceManagementApplicabilityRuleOsVersion": {
"@odata.type": "microsoft.graph.deviceManagementApplicabilityRuleOsVersion",
"minOSVersion": "Min OSVersion value",
"maxOSVersion": "Max OSVersion value",
"name": "Name value",
"ruleType": "exclude"
},
"deviceManagementApplicabilityRuleDeviceMode": {
"@odata.type": "microsoft.graph.deviceManagementApplicabilityRuleDeviceMode",
"deviceMode": "sModeConfiguration",
"name": "Name value",
"ruleType": "exclude"
},
"createdDateTime": "2017-01-01T00:02:43.5775965-08:00",
"description": "Description value",
"displayName": "Display Name value",
"version": 7,
"usernameSource": "primarySmtpAddress",
"usernameAADSource": "primarySmtpAddress",
"userDomainNameSource": "netBiosDomainName",
"customDomainName": "Custom Domain Name value",
"accountName": "Account Name value",
"authenticationMethod": "certificate",
"blockMovingMessagesToOtherEmailAccounts": true,
"blockSendingEmailFromThirdPartyApps": true,
"blockSyncingRecentlyUsedEmailAddresses": true,
"durationOfEmailToSync": "oneDay",
"emailAddressSource": "primarySmtpAddress",
"easServices": "calendars",
"easServicesUserOverrideEnabled": true,
"hostName": "Host Name value",
"requireSmime": true,
"smimeEnablePerMessageSwitch": true,
"smimeEncryptByDefaultEnabled": true,
"smimeSigningEnabled": true,
"smimeSigningUserOverrideEnabled": true,
"smimeEncryptByDefaultUserOverrideEnabled": true,
"smimeSigningCertificateUserOverrideEnabled": true,
"smimeEncryptionCertificateUserOverrideEnabled": true,
"requireSsl": true,
"useOAuth": true,
"signingCertificateType": "certificate",
"encryptionCertificateType": "certificate",
"perAppVPNProfileId": "Per App VPNProfile Id value"
}