This cmdlet is available only in the cloud-based service.

Use the Get-ApplicationAccessPolicy cmdlet to view the list of application access policies.

For information about the parameter sets in the Syntax section below, see Exchange cmdlet syntax.


   [[-Identity] <ApplicationAccessPolicyIdParameter>]


This feature applies only to apps connecting to the Microsoft Graph API for Outlook resources.

You need to be assigned permissions before you can run this cmdlet. Although this topic lists all parameters for the cmdlet, you may not have access to some parameters if they're not included in the permissions assigned to you. To find the permissions required to run any cmdlet or parameter in your organization, see Find the permissions required to run any Exchange cmdlet.


Example 1

Get-ApplicationAccessPolicy | Format-Table -Auto Description,ScopeName,AccessRight

This example returns a summary list of all application access policies in the organization.

Example 2

Get-ApplicationAccessPolicy -Identity "596ade3a-1abe-4c5b-b7d5-a169c4b05d4a\7a774f0c-7a6f-11e0-85ad-07fb4824019b:S-1-5-21-724521725-2336880675-2689004279-1821338;8b6ce428-cca2-459a-ac50-d38bcc932258"

This example returns detailed information for the specified application access policy.



The Identity parameter specifies the application access policy that you want to view. To find the Identity value for the policy, run the command Get-ApplicationAccessPolicy | Format-List Identity,Description,ScopeName,AccessRight,AppID.

Default value:None
Accept pipeline input:True
Accept wildcard characters:False
Applies to:Exchange Online, Exchange Online Protection