Add User as owner of Azure AD Group through REST API
Is it possible to add the owner to the Azure AD group from any REST API?
I think I should have one service principal and I have to generate an access token to do that.
I tried to generate access token and used below query to add owner via Postman.
https://graph.microsoft.com/v1.0/groups/groupid/owners/$ref
But I am facing 403 Forbidden error like below:
{ "error": { "code": "Authorization_RequestDenied", "message": "Insufficient privileges to complete the operation.", "innerError": { "date": "2022-06-29T05:42:38", "request-id": "ebd01257-b890-4b3d-8c22-a1b34738e5a6", "client-request-id": "ebd01257-b890-4b3d-8c22-a1b34738e5a6" } }
I have granted API permissions like below:
What else permissions are needed? Is there any other way instead of Postman?
You can make use of Microsoft Graph Explorer instead of Postman that doesn't require you to generate access token separately.
You can call the same query by granting below permissions based on your account type:
I tried to reproduce the same in my environment and added the owner to the Azure AD group like below:
After running the above query, owner added successfully like below:
To confirm the above, check the portal whether the owner is added or not like below:
Reference:
- How to add a field to a custom made page?
- How to use a bearer token generated with client credentials flow in PowerShell to invoke DevOps REST API?
- Azure CDN Rest API Returns an empty array of Profiles and Endpoints
- How to retrieve sensitivity labels associated with user using API or .NET?
- Invalid argument error when adding Required Reviewer via Azure DevOps API
- Specifying SAS Token Authorization header with Azure REST API
- How to get project iterations through the Azure API
- Get the permissions of users with respect to the repositories via the API of ADO
- How do you check the status of a SQL Import Export Operation in Azure?
- How to list and purge deleted Azure Cognitive Services resources in the current subscription with Azure CLI
- How to get the condition value for creating an eligible role assignment with excluding roles?
- REST API for Eligible role assignment with conditions for Azure resources
- How to get Project Name, Release Name, Release Date, Release Changes (Commit Message) From Azure Release APIs
- Is there a way to get the live logs of a running pipeline using Azure REST API?
- Bind managed certificate to Custom Domain for Azure Container App with az CLI fails
- Trying to get all PRs from "branch/*" using Rest API
- Creating Azure DevOps Workload Identity Federation with Az CLI/Az PS
- Is there any azure api which returns the compatibility of VM Size to disk supported
- Can't hide the field Deployment in a workItem
- Why can't i delete iteration from the board?
- Unable to find REST API documentation for Azure Bot Service [List by subscription]
- Replicate Azure Virtual Machine Managed Identity configuration REST API with PowerShell Invoke-RestMethod
- Microsoft API Application Permissions - List all Tenants / Future Deprecated APIs Unclear
- How to call Azure Rest API in C#
- Get a list of all Purview Business Assets through REST API endpoint
- Enable both system-assigned and user assigned identities to Azure Virtual Machine simultaneously in single REST API call
- How to make inherited process work Item editable?
- Standard ways of generating the bearer token for authorization. - When sending the get request to azure blob storage list api in postman
- ResourceNotFound || The specified resource does not exist. - When sending the GET Request to "List Containers" Rest API in Postman
- Method Not Allowed when using the REST API to update the json view on connections for Logic App