Update deviceManagementDerivedCredentialSettings

Namespace: microsoft.graph

Important: Microsoft Graph APIs under the /beta version are subject to change; production use is not supported.

Note: The Microsoft Graph API for Intune requires an active Intune license for the tenant.

Update the properties of a deviceManagementDerivedCredentialSettings object.

    ## Permissions

One of the following permissions is required to call this API. To learn more, including how to choose permissions, see Permissions.

Permission type Permissions (from most to least privileged)
Delegated (work or school account)
    Device configuration DeviceManagementConfiguration.ReadWrite.All
    Resource Access Policy DeviceManagementConfiguration.ReadWrite.All
Delegated (personal Microsoft account) Not supported.
Application
    Device configuration DeviceManagementConfiguration.ReadWrite.All
    Resource Access Policy DeviceManagementConfiguration.ReadWrite.All

This API is available in the following national cloud deployments.

Global service US Government L4 US Government L5 (DOD) China operated by 21Vianet

HTTP Request

PATCH /deviceManagement/derivedCredentials/{deviceManagementDerivedCredentialSettingsId}
PATCH /deviceManagement/deviceConfigurations/{deviceConfigurationId}/derivedCredentialSettings
PATCH /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.iosVpnConfiguration/derivedCredentialSettings
PATCH /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.iosEnterpriseWiFiConfiguration/derivedCredentialSettings
PATCH /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.iosEasEmailProfileConfiguration/derivedCredentialSettings
PATCH /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.iosDerivedCredentialAuthenticationConfiguration/derivedCredentialSettings

Request headers

Header Value
Authorization Bearer {token}. Required. Learn more about authentication and authorization.
Accept application/json

Request body

In the request body, supply a JSON representation for the deviceManagementDerivedCredentialSettings object.

The following table shows the properties that are required when you create the deviceManagementDerivedCredentialSettings.

Property Type Description
id String Unique identifier for the Derived Credential
RA Policy
helpUrl String The URL that will be accessible to end users as they retrieve a derived credential using the Company Portal.
displayName String The display name for the profile.
issuer deviceManagementDerivedCredentialIssuer The derived credential provider to use. Possible values are: intercede, entrustDatacard, purebred.
notificationType deviceManagementDerivedCredentialNotificationType The methods used to inform the end user to open Company Portal to deliver Wi-Fi, VPN, or email profiles that use certificates to the device. Possible values are: none, companyPortal, email.

Response

If successful, this method returns a 200 OK response code and an updated deviceManagementDerivedCredentialSettings object in the response body.

Example

Request

Here is an example of the request.

PATCH https://graph.microsoft.com/beta/deviceManagement/deviceConfigurations/{deviceConfigurationId}/derivedCredentialSettings
Content-type: application/json
Content-length: 83

{
  "@odata.type": "#microsoft.graph.deviceManagementDerivedCredentialSettings"
}

Response

Here is an example of the response. Note: The response object shown here may be truncated for brevity. All of the properties will be returned from an actual call.

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 132

{
  "@odata.type": "#microsoft.graph.deviceManagementDerivedCredentialSettings",
  "id": "bc650741-0741-bc65-4107-65bc410765bc"
}