Where can I find the needed permissions for various list handling methods?

Last Modified on 12/05/2022 2:15 pm EST

The table below lists all permissions and whether they are Delegated (D) or Application (A) type.

  • The Minimum Required column is needed to support OAUTH (SSO) login to PoliteMail.  Small lists (less than 1000 members) can be expanded via MAPI in Outlook Desktop.
  • Other configurations shown show both client-side and server-side permissions for AAD group expansion, AAD and Dynamic Distribution Group expansion in Exchange via EWS, and with all features enabled.
  • With all features enabled, note that some permissions require both Application and Delegated types.  Generally speaking, they map to the client (delegated) or server (application) expansion options.
PermissionMinimum RequiredAzure Active Directory (AAD) Group ExpansionAAD & Exchange Dynamic Distribution Group Expansion via EWSAll Features Enabled


Client-SideServer-SideClient-SideServer-Side
offline_accessDDDDDD
openidDDDDDD
profileDDDDDD
User.ReadDDDDDD
GroupMember.Read.All
DADAA, D
MailboxSettings.Read
DADAA, D
OrgContact.Read.All
DADAA, D
People.Read.All
DADAA, D
User.Read.All
DADAA, D
EWS.AccessAsUser.All


D
D
full_access_as_app



AA


Was this article helpful?
Thank you for your feedback!
User Icon

Thank you! Your comment has been submitted for approval.

Related Articles
Most Popular
Newest
Recently Updated
Copyright © 2022 - 2024 PoliteMail. All rights reserved.