Microsoft Graph Feature Requests

Welcome to the Microsoft Graph UserVoice! Do you have an idea or feature suggestion based on your experience with Microsoft Graph? Please share these with us by submitting your idea below or voting up ideas submitted by other users. This forum will be directly monitored by the Microsoft Graph engineering teams who are working on new features every day.

If you have feedback on a specific API service, please choose the corresponding category. Please submit any broad ideas related to Microsoft Graph or ideas across more than one service to the “General” category.

This site is only for feature suggestions and ideas! If you need technical help, please go to the Microsoft Graph StackOverflow or if you have a Premier support contract raise a support ticket.

For more information on Microsoft Graph, please checkout https://graph.microsoft.com.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Some of the Organization property names are incorrect under properties section

    Some of the organization property names are incorrect. Organization object does have neither companyLastDirSyncTime nor dirSyncEnabled. Please update documentation accordingly under properties section.

    Here is the documentation url: https://docs.microsoft.com/en-us/graph/api/resources/organization?view=graph-rest-beta

    Correct property names should be:
    - onPremisesLastSyncDateTime
    - onPremisesSyncEnabled

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  2. Return Description field along with Key/Password Credentials. Inconsistent with front end.

    KeyCredentials/PasswordCredentials are assigned a description field when using the portal, but we cannot access that field when using the API. makes it difficult to keep track of changes made manually and ones via the API

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  3. Provide examples that actually work, and a non overcomplicated guide/wizard

    Azure App/Manifest design and documentation is probably the worst design I have seen, and I have seen a lot.

    For starters you could document your implementation of Oauth2 with Azure using actual working examples. I have spent days and days sifting trough your cryptic, half written moron documentation justs to achieve the simplest of simple things, namely authorize a user and get the user security groups in a list.

    It is amazing how complicated you have managed to created the tools to perform such a mundane task. I was happy to see some initiative in the right direction, namely easyauth.azurewebsites.net,…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  4. Sign-in audit logs for Office 365 only tenants

    Provide sign-in audit logs for Office 365 Only tenants. It is unfair to make us purchase Azure AD Premium licenses to get these details.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  5. Access without a user, client_assertion instead of client_secret

    There are two good documentation on

    https://developer.microsoft.com/en-us/graph/docs/concepts

    detailing how to get auth tokens, one of them being clientsecret granttype showing how to get access token without a signed in user, it would be great if that documentation was updated or a new one created showing how you can use clientassertion instead of clientsecret to fetch the access token.

    I know that there are many documentation on client_assertion but in my mind it would benifit alot of people to have it all toghether in one place instead of getting redirected to somewhere else which doesn't fully explain…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  6. Support Uploading a x509 Certificate to application manifest for web apps using clientCredential flow

    As it is now there is no way of uploading a x509 certificate programmatically using https://graph.microsoft.com as resource but it's very much possible using https://graph.windows.net which seems very strange to me and only for Delegate Permissions.

    I know that they are two different apis but development on Azure Graph API has halted and I don't want to use that. Consider adding a functionality to upload a x509 certificate to application Manifest for applications created on Microsoft Application Registration Portal!

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  7. Allow application permissions for group lifecycle management

    Hi,
    I`d like to ask you to allow Application permission to manage membership of groups in lifecycle policy management.
    In beta bersion of Microsoft Graph you require that only Delegated permissions are allowed. In my use case, I need application with higher permissions executing on behalf of lower privileged user.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  8. 1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  9. Publish gem omniauth-microsoft_v2_auth on rubygems.org

    For current Ruby integration, the gem omniauth-microsoftv2auth needs to be pulled from github, rather than from the standard gems source of rubygems.org.

    omniauthsrc = 'git://github.com/cbales/omniauth-microsoftgraph'
    gem 'omniauth-microsoftv2auth', git: omniauth_src

    Can you please publish the gem with all the other gems on rubygems.org, to avoid pulleding directly from github?

    gem 'omniauth-microsoftv2auth'

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  10. include an API to close Risk Events by external systems

    Documentation does not show an API to use in order to close a risk event (and set it as Resolved/FalsePositive/Ignored as explained here https://docs.microsoft.com/en-us/azure/active-directory/active-directory-identityprotection )

    This is a blocker to automation efforts.. Please add this API.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  11. Allow v2.0 endpoint authenticated apps to use Office management api scopes and claims

    The current azure v2.0 endpoint authenticated access tokens don't work with service management apis listed in this document (https://msdn.microsoft.com/en-us/office-365/office-365-service-communications-api-reference)

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  12. External users grant administrative roles similar to azure external admins

    Add the ability to grant external users administrative roles for office365. This functionality exists for Azure, but not office365/exchange online.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  13. Add more permission scopes to "policies" endpoint in MS Graph

    Currently /policies requires Directory.AccessAsUser.All which is a delegated permission. Can we include the application-level permission Directory.Read.All?

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  14. allow api windows.graph.net to query the AAD Tenant's trust relationships with Azure Subscriptions

    allow api graph.windows.net or graph.microsoft.net to query the AAD Tenant's trust relationships with Azure Subscriptions. These trust relationships exist in the classic azure portal under Settings showing the Azure Subscription and the default AAD

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  15. allow applications with app-only token to impersonate user accounts

    If an application with an app-only accesstoken could impersonate any other user (not signing them them in with username and password, but impersonating them either by id or userPrinicpalName) then the apps could act more easily on behalf of specified users.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  16. can you please also add the azure ad b2c user flows with this application.

    please integrate azure ad b2c SignUpandSignIn flow in this application.

    there is no proper end to end document or sample android code is available for b2c userflows

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
1 2 3 5 Next →
  • Don't see your idea?

Feedback and Knowledge Base