ThomasKur
commented
3 years ago According to docs these scopes exist. For example PrintConnector.Read.All: https://docs.microsoft.com/en-us/graph/api/print-list-connectors?view=graph-rest-1.0&tabs=http
And I can also see them in my environment.
Reading groups is already possible based on the "Directory.Read.All" scope. So I assume you have another issue. Do you have a error message?
I created the App Registration and also added the permissions. Some of them weren't found and the for example the "Assignments" overview showing only "0" I guess it is because it probably needs group.read as well?
Is this still the latest permissions needed: ( in big the ones not available) "AccessReview.Read.All","Agreement.Read.All","AppCatalog.Read.All","Application.Read.All","CloudPC.Read.All","ConsentRequest.Read.All","Device.Read.All","DeviceManagementApps.Read.All","DeviceManagementConfiguration.Read.All","DeviceManagementManagedDevices.Read.All","DeviceManagementRBAC.Read.All","DeviceManagementServiceConfig.Read.All","Directory.Read.All","Domain.Read.All","Organization.Read.All","Policy.Read.All","Policy.ReadWrite.AuthenticationMethod","Policy.ReadWrite.FeatureRollout","PrintConnector.Read.All","Printer.Read.All","PrinterShare.Read.All","PrintSettings.Read.All","PrivilegedAccess.Read.AzureAD","PrivilegedAccess.Read.AzureADGroup","PrivilegedAccess.Read.AzureResources","User.Read"