Microsoft Graph Feature Requests

Welcome to the Microsoft Graph UserVoice! Do you have an idea or feature suggestion based on your experience with Microsoft Graph? Please share these with us by submitting your idea below or voting up ideas submitted by other users. This forum will be directly monitored by the Microsoft Graph engineering teams who are working on new features every day.

If you have feedback on a specific API service, please choose the corresponding category. Please submit any broad ideas related to Microsoft Graph or ideas across more than one service to the “General” category.

This site is only for feature suggestions and ideas! If you need technical help, please go to the Microsoft Graph StackOverflow or if you have a Premier support contract raise a support ticket.

For more information on Microsoft Graph, please checkout https://graph.microsoft.com.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Detecting MFA using the v2.0 endpoint

    The AMR claim is detectable within the v1 endpoint in order to determine if the user has used multi factor, but it is not possible to detect in the v2 endpoint.

    Please enhance the v2 endpoint.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  2. Allow PowerShell ClientID to consume Office 365 Usage Reports

    It would be great if we could access the Office 365 Usage Report without creating an Azure App like explained here : https://blogs.technet.microsoft.com/dawiese/2017/04/15/get-office365-usage-reports-from-the-microsoft-graph-using-windows-powershell/

    Indeed, it's kind of a showstopper for consultants who want to assess a client's Office 365 tenant.

    There is a PowerShell ClientID that is already available to consume other GraphAPI feature like this :
    https://blogs.technet.microsoft.com/paulomarques/2016/03/21/working-with-azure-active-directory-graph-api-from-powershell/

    But if we use it, it fails with:
    Invoke-RestMethod : {
    "error": {

    "code": "InvalidAuthenticationToken",
    
    "message": "Access token validation failure.",
    "innerError": {
    "request-id": "82702d75-723c-4725-be89-b0bc3a1e95ee",
    "date": "2017-04-19T13:10:27"
    }

    }
    }

    63 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reports  ·  Flag idea as inappropriate…  ·  Admin →

    This decision to not allow this is for security and governance reasons. It gives more control for tenant administrators to control on access to the data in the Office 365 reports.
    It is also due to our legal compliance, we require that tenants accept the terms of use when registering an Application that calls the Microsoft Graph. So client Ids are not shared in this scenario with accepting terms. ^JT

  3. MSGraph to get the user's last login datetime, or never logged in status

    Currently when searching online, the only place to get last login date is from outlook, but if a AD user is not using office 365's exchange, then the last login date is not accurate. So there is a need for IT professional to get a user's last login datetime, or never logged in status.

    53 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Users  ·  Flag idea as inappropriate…  ·  Admin →
  4. Make it possible to create organizational Contacts using graph API

    At this moment it's not possible to create organizational contacts using the graph api. We need them in our distribution lists.

    44 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    17 comments  ·  Personal Contacts (Outlook)  ·  Flag idea as inappropriate…  ·  Admin →

    With the notion of guests now in Office 365, the decision has been made that Organizational contacts would not be needed moving forward. Therefore there is no priority on building a new API to support this. ^JT

  5. Similar API response structure for Business and Personal accounts

    https://docs.microsoft.com/en-us/onedrive/developer/rest-api/api/drive_recent - this endpoint returns different set of fields for personal and business accounts. I could understand if it only adds extra fields for business account, but no - field "fileSystemInfo.lastAccessedDateTime" is missing. And the whole structure looks different. Suggestion - add missing fields for business account

    16 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Files (OneDrive)  ·  Flag idea as inappropriate…  ·  Admin →

    The data sources and available data for Business and Personal accounts are different. This is not something we will be implementing at this time. -EY

  6. Graph API differential query: need a way to distinguish change from creation

    At this time, in the response of a differential query, there is no formal way to distinguish if item is about creation or update. No problem with deletion which is signaled by the property aad.isDeleted.

    14 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →

    Given how Azure AD creates and updates objects, we don’t think it makes sense to differentiate “create” from “update”. We think that could create confusion, and a false sense of tracking changes.

    For example, in many scenarios when an object is created in AAD (T1), it is also quickly updated (T2). Since delta query protocol does not return “history”, but the latest change, if the app executes DQ at T1 looking for “created” objects only, it will find the new object, but if the same query executes at T2, then it wouldn’t.

  7. MS Graph API '/users/delta' endpoint

    At the moment the /delta endpoint only works for changes on default attributes or attributes requested via $select query parameter.

    It would be very useful to get all new/updated/deleted users, no matter what property changed (e.g. aboutMe, skills, manager, photo).

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Users  ·  Flag idea as inappropriate…  ·  Admin →

    There are too many properties on entities like ‘user’ to make this useful in practice, in our opinion. We believe that requiring an explicit $select list is the proper approach. Please share with us a sample scenario where any property (current, or added in the future) should trigger a user to be included in the change stream – this may help us understand the requirement better. -EY

  8. Manage Microsoft Graph Schema Extensions in Azure Portal

    Considering how rare it is to manage Schema Extensions, it would be best to be able to manage these from Azure Portal and/or in the App Registration pages.

    Right now I have a Client Credentials application and to manage Schema Extensions I would have to build a second application just to manage these as I would need to support authorisation with delegated permissions for admin consent. Even the Graph Explorer does not let me manage Schema Extensions right now.

    Per http://stackoverflow.com/questions/43889984/microsoft-graph-registering-a-schema-extension

    17 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Flag idea as inappropriate…  ·  Admin →

    There are no plans to do this in the Azure Portal. This can be done via the Graph Explorer (https://aka.ms/ge). When you visit that link, you can actually click on left hand side on “show more samples” and then on right hand side select “Extensions”. You can then use the samples to find your schema extensions on resource objects. And even then update or remove them.

    ^JT

  9. Provide snapshot image of Planner plan status

    Similar to how the Graph API allows a screenshot of a chart in Excel to be returned, I would like it to return a screenshot of a plan status chart from Planner.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Tasks and Plans (Planner)  ·  Flag idea as inappropriate…  ·  Admin →

    As it currently stands, we would need significantly more votes here to prioritize this to backlog. If this is something you require and haven’t voted, please do so to indicate demand. ^JT

  10. Skype for Business UCMA functionality

    Please finally add UCMA like APIs to Skype for Business in Office 365. Define the application in Azure AD, so it can access all aspects of Skype for Business like a UCMA trusted application can (e.g. subscribe and publish presence on behalf of users).

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Teamwork (Teams)  ·  Flag idea as inappropriate…  ·  Admin →

    Due to the strategic direction of Microsoft Teams moving forward at Microsoft. This will not be prioritized. ^JT

  11. Need to programmatically provision new Office 365 (trial) tenants

    When offering a solution for Office 365 I need to automatically provision a new Office 365 tenant (30-day trial) for the potential customer to test my software in combination with a real Office 365 tenant. This especially is important when my software is available in the Office Store and n people open a trial and want to test it. Right now, Office 365 trial tenant must be created manually, which is not feasible for many testers who want to evaluate our solution in combination with the Office 365 experience. Would need an API (or PowerShell) for creating a new O365…

    47 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Identity and Access  ·  Flag idea as inappropriate…  ·  Admin →
  12. Allow the full EWS managed API to work when logging in to Office 365

    The Office 365 should allow you to use the full EWS managed API after you log in.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail (Outlook)  ·  Flag idea as inappropriate…  ·  Admin →
  13. It would be extremely useful if the Office 365 Message Center was available as an RSS feed, like the Service Health notice

    It would be extremely useful for Company Administrators and Partners if the Message Center was available as an RSS feed. Much like the Service Health notices are. Often these messages do not get read in a timely manner, especially in a Partner or Company Administrator scenario.
    Ideally, we would like to see the Message Center notifications with a 'Complete Action By Date' to be emailed to the Company Administrator.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →

    This userVoice is specific to the Microsoft Graph, there are other suitable places to request features for administrator features in Office 365.

  14. Tenant admin page for viewing all registered apps' client secret

    Remembering the client secret for the registered apps is always a cumbersome when its done by other team members. It becomes painful if you have a multiple environments. Would like to see a tenant admin page to view the registered apps and its client secret, along with the expiry date. Currently some of the details are available with Azure management shell but not the client secret.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →

    We understand the frustration of having to manage multiple environments, however, this was a by-design decision to ensure that the client secrets of apps are not compromised in any way. We purposely limit the amount of time that you can view your client secret in order to provide the same security for apps as one would for other account passwords. Unfortunately, this would not be something that we would change based on recommended security practices.

  15. Provide Office365 API support in MSDN forums

    StackOverflow isn't working out. We need a proper MSDN forum for Office365API support. I've seen 3 different tags suggested, the most common of which has no questions. The only questions that do exist are all first timers some of which are answered by first timers on behalf of MS as well (evidence that both your users and employees aren't on SO)

    Also check out this yes/no question that was closed unanswered as 'too broad' by rouge moderators.

    http://stackoverflow.com/questions/22699578/questions-about-office-365-preview-apis

    Maybe instead of providing support in blog comments, gallery discussions and twitter it would help to use a proper msdn forum.

    That…

    19 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →

    I appreciate your feedback. Its something as I’ve come back on board the Graph team in May that we’ve discussed at length. We have decided that for now all questions will remain on StackOverflow. There is further discussion on the correct place to raise geniune issues in the service, where developers do not have a paid support contract and cannot submit support tickets. This discussion is ongoing. ^JT

  16. Remove dependance on windows azure portal from O365 api

    Having to link your office tenant to an azure account is a pain, especially since its [seemingly] impossible to unlink it afterwards.

    Please expose the application configuration/premission options another way.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →

    The Azure Portal is critical to the app registration process and our strategic direction at Microsoft. There have been improvements in the last few years regarding no need to have a credit card to get to those screens like historically you needed to. In November 2018, we also shipped a improved app registration preview experience too. ^JT

  17. 6 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  18. Less restrictions to the Office 365 REST API

    I'm looking into ways to migrate email from an on-premise Exchange server to Office 365. The REST API ( http://msdn.microsoft.com/en-US/library/dn605896 ) looks promising but a bit restrictive. Certain properties like isDraft, DateTimeSent, ConversationId,.. are set as read-only. While it makes sense that a user wouldn't be able to change these things I see no reason to block applications from creating custom mail messages.

    As an example, after I create a new mail with the API it is set as draft but I want to have the message show as if it had been sent already. When I send a PATCH…

    13 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Mail (Outlook)  ·  Flag idea as inappropriate…  ·  Admin →

    Apologies for the delay in this feature request. Based on the concerns around emails being spoofed by applications with control of changing things like date time set, this will not be considered as a feature.

  • Don't see your idea?

Feedback and Knowledge Base