You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: microsoftgraph/docs-conceptual/authentication-commands.md
+14-8Lines changed: 14 additions & 8 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -39,17 +39,23 @@ There are three ways to allow delegated access using `Connect-MgGraph`:
39
39
Connect-MgGraph -AccessToken $AccessToken
40
40
```
41
41
42
-
#### Use delegated access using own App Id
42
+
#### Use delegated access with a custom application for Microsoft Graph PowerShell
43
43
44
-
Follow the steps below to create custom applications that you can use to connect to Microsoft Graph PowerShell. Use this approach if you need to limit the consent permissions granted for Graph PowerShell usage.
44
+
Follow the steps below to create custom applications that you can use to connect to Microsoft Graph PowerShell. Use this approach if you need to isolate and limit the consent permissions granted for Microsoft Graph PowerShell usage.
45
45
46
-
1. Go to the <a href="https://entra.microsoft.com/#view/Microsoft_AAD_RegisteredApps/ApplicationsListBlade" target="_blank">Azure portal - App registrations</a> > **New Registration**
47
-
1. **Name**: *Microsoft Graph PowerShell - High Privilege admin use only* (Enter a meaningful name for your application)
48
-
1. **Supported account types**: Accounts in this organization directory
49
-
1. **Redirect URI**:
46
+
1. Go to the <a href="https://entra.microsoft.com/#view/Microsoft_AAD_RegisteredApps/ApplicationsListBlade" target="_blank">Azure portal - App registrations</a> > **New Registration**.
47
+
1. Enter a **Name** for your application, for example *Microsoft Graph PowerShell - High Privilege admin use only*.
48
+
1. For **Supported account types**, select **Accounts in this organization directory**.
49
+
1. For **Redirect URI**:
50
50
- Select **Public client/native** from the drop down
51
-
- **Uri**: http://localhost
52
-
- Click **Create**
51
+
- **URI value**: *http://localhost*
52
+
1. Select **Register**.
53
+
1. Go to **Enterprise applications** and select the application you just created.
54
+
1. Under **Manage**, select **Properties** and set **Assignment required?** to **Yes**.
55
+
1. Select **Save**.
56
+
1. Under **Manage**, select **Users and groups**.
57
+
1. Select **Add user/group** and add the users and groups permitted to use this application.
58
+
1. Once you've added all the users and groups, select **Assign**.
53
59
54
60
You can now use this app instead of the default one by connecting with:
0 commit comments