tenantAppManagementPolicy resource type

Article
03/23/2023

Namespace: microsoft.graph

Tenant-wide application authentication method policy to enforce app management restrictions for all applications and service principals. This policy applies to all apps and service principals unless overridden when an appManagementPolicy is applied to the object.

Inherits from policyBase.

Methods

Method	Return type	Description
Get	tenantAppManagementPolicy	Read the properties of the default app management policy set for applications and service principals.
Update	None	Updates the default app management policy for applications and service principals.

Properties

Property	Type	Description
applicationRestrictions	appManagementConfiguration	Restrictions that apply as default to all application objects in the tenant.
description	String	The description of the default policy. Inherited from policyBase.
displayName	String	The display name of the default policy. Inherited from policyBase.
id	String	The default policy identifier.
isEnabled	Boolean	Denotes whether the policy is enabled. Default value is `false`.
servicePrincipalRestrictions	appManagementConfiguration	Restrictions that apply as default to all service principal objects in the tenant.

Relationships

None.

JSON representation

The following is a JSON representation of the resource.

{
  "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#policies/defaultAppManagementPolicy",
  "id": "string (identifier)",
  "description": "string",
  "displayName": "string",
  "isEnabled": false,
  "applicationRestrictions": {
    "@odata.type":"microsoft.graph.appManagementConfiguration"
  },
  "servicePrincipalRestrictions": {
    "@odata.type":"microsoft.graph.appManagementConfiguration"
  }
}