Delete a user

Namespace: microsoft.graph

Delete user.

When deleted, user resources are moved to a temporary container and can be restored within 30 days. After that time, they are permanently deleted. To learn more, see deletedItems.

Permissions

One of the following permissions is required to call this API. To learn more, including how to choose permissions, see Permissions.

Permission type Permissions (from least to most privileged)
Delegated (work or school account) User.ReadWrite.All
Delegated (personal Microsoft account) Not supported.
Application User.ReadWrite.All

The calling user must be assigned one of the following Azure AD roles:

  • User Administrator
  • Privileged Authentication Administrator
  • Global Administrator

To delete users with privileged administrator roles in delegated scenarios, the app must be assigned the Directory.AccessAsUser.All delegated permission, and the calling user must have a higher privileged administrator role as indicated in Who can perform sensitive actions.

In app-only scenarios, the User.ReadWrite.All application permission isn't enough privilege to delete users with privileged administrative roles. The app must be assigned a higher privileged administrator role as indicated in Who can perform sensitive actions.

HTTP request

DELETE /users/{id | userPrincipalName}

Request headers

Header Value
Authorization Bearer {token}. Required.

Request body

Do not supply a request body for this method.

Response

If successful, this method returns 204 No Content response code. It does not return anything in the response body.

Example

Request

The following is an example of a request.

DELETE https://graph.microsoft.com/v1.0/users/{user-id}

Response

The following is an example of the response.

HTTP/1.1 204 No Content