| title | appManagementPolicy resource type |
|---|---|
| description | Represents an application auth method policy for enforcing app management restrictions on specific application or service principals. |
| author | aricrowe57 |
| ms.localizationpriority | medium |
| ms.subservice | entra-sign-in |
| doc_type | resourcePageType |
| ms.date | 11/07/2024 |
Namespace: microsoft.graph
[!INCLUDE beta-disclaimer]
Restrictions on app management operations for specific applications and service principals. If this resource is not configured for an application or service principal, the restrictions default to the settings in the tenantAppManagementPolicy object.
To learn more about how to use app management policy, see Microsoft Entra application authentication methods API overview.
| Method | Return type | Description |
|---|---|---|
| List | appManagementPolicy collection | Returns a list of app management policies created for applications and service principals along with their properties. |
| Create | appManagementPolicy | Creates an app management policy that can be assigned to an application or service principal object. |
| Get | appManagementPolicy | Gets a single app management policy object. |
| Update | None | Updates an app management policy. |
| Delete | None | Deletes an app management policy from the collection of policies in appManagementPolicies. |
| List applies to | appManagementPolicy | Returns a list of applications and service principals to which the policy is applied. |
| Create applies to | None | Assign an appManagementPolicy policy object to an application or service principal object. |
| Delete applies to | None | Remove an appManagementPolicy policy object from an application or service principal object. |
| Property | Type | Description |
|---|---|---|
| description | String | The description of the policy. Inherited from policyBase. |
| displayName | String | The display name of the policy. Inherited from policyBase. |
| id | String | The unique identifier for the policy. |
| isEnabled | Boolean | Denotes whether the policy is enabled. |
| restrictions | customAppManagementConfiguration | Restrictions that apply to an application or service principal object. |
| Relationship | Type | Description |
|---|---|---|
| appliesTo | directoryObject | Collection of application and service principals to which a policy is applied. |
The following JSON representation shows the resource type.
{
"@odata.context": "https://graph.microsoft.com/beta/$metadata#policies/appManagementPolicies",
"description": "String",
"displayName": "String",
"id": "String (identifier)",
"isEnabled": "Boolean",
"restrictions": {"@odata.type": "microsoft.graph.customAppManagementConfiguration"}
}