Open sabre1041 opened 1 year ago
Currently, the recommendations for API permissions to be granted for Azure Active Directory is the following:
Alternately, the following permission can be used instead:
Should the guidance be changed to use this new permission model or retain the existing guidance
It should be as narrow as possible, so the three given is probably the best. I don't think User.Read.All is required - perhaps User.ReadBasic.All is sufficient.
Currently, the recommendations for API permissions to be granted for Azure Active Directory is the following:
Alternately, the following permission can be used instead:
Should the guidance be changed to use this new permission model or retain the existing guidance