keyCredentialConfiguration resource type
Namespace: microsoft.graph
Important
APIs under the /beta version in Microsoft Graph are subject to change. Use of these APIs in production applications is not supported. To determine whether an API is available in v1.0, use the Version selector.
Represents a key credential configuration object that contains properties to configure application certificate restriction.
Properties
| Property | Type | Description |
|---|---|---|
| certificateBasedApplicationConfigurationIds | String collection | Collection of GUIDs that represent certificateBasedApplicationConfiguration that is allowed as root and intermediate certificate authorities. |
| maxLifetime | Duration | String value that indicates the maximum lifetime for key expiration, defined as an ISO 8601 duration. For example, P4DT12H30M5S represents four days, 12 hours, 30 minutes, and five seconds. This property is required when restrictionType is set to keyLifetime. |
| restrictForAppsCreatedAfterDateTime | DateTimeOffset | Specifies the date from which the policy restriction applies to newly created applications. For existing applications, the enforcement date can be retroactively applied. |
| restrictionType | appKeyCredentialRestrictionType | The type of restriction being applied. Possible values are asymmetricKeyLifetime, and unknownFutureValue. Each value of restrictionType can be used only once per policy. |
| state | appManagementRestrictionState | String value that indicates if the restriction is evaluated. The possible values are: enabled, disabled, and unknownFutureValue. If enabled, the restriction is evaluated. If disabled, the restriction isn't evaluated or enforced. |
Relationships
None.
JSON representation
The following JSON representation shows the resource type.
{
"@odata.type": "#microsoft.graph.keyCredentialConfiguration",
"restrictionType": {
"@odata.type": "microsoft.graph.appKeyCredentialRestrictionType"
},
"state": {
"@odata.type": "microsoft.graph.appManagementRestrictionState"
},
"restrictForAppsCreatedAfterDateTime": "String (DateTime)",
"maxLifetime": "String (duration)",
"certificateBasedApplicationConfigurationIds": [
"String (Guid)"
]
}