| title | Add ediscoveryCaseMember |
|---|---|
| description | Add an ediscoveryCaseMember object. |
| author | kylefk |
| ms.date | 11/26/2025 |
| ms.localizationpriority | medium |
| ms.subservice | ediscovery |
| doc_type | apiPageType |
Namespace: microsoft.graph.security
Add an ediscoveryCaseMember to an ediscoveryCase. The ediscoveryCaseMember can be one of two types: a user or a role group.
[!INCLUDE national-cloud-support]
Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions only if your app requires it. For details about delegated and application permissions, see Permission types. To learn more about these permissions, see the permissions reference.
[!INCLUDE permissions-table]
[!INCLUDE rbac-ediscovery-write]
POST /security/cases/ediscoveryCases/{ediscoveryCaseId}/caseMembers| Name | Description |
|---|---|
| Authorization | Bearer {token}. Required. Learn more about authentication and authorization. |
| Content-Type | application/json. Required. |
[!INCLUDE table-intro]
| Property | Type | Description |
|---|---|---|
| recipientType | microsoft.graph.security.recipientType | Specifies the recipient type of the eDiscovery case member. The possible values are: user, roleGroup, unknownFutureValue. Required. |
| id | String | The ID of the eDiscovery case member. If not specified, then either displayName (for role group) or smtpAddress (for user) must be provided. |
| displayName | String | The display name of the eDiscovery case member. Allowed only for case members of type roleGroup. If not specified, then ID must be provided. |
| smtpAddress | String | The smtp address of the eDiscovery case member. Allowed only for case members of type user. If not specified, then ID must be provided. |
If successful, this method returns a 200 OK response code and the added microsoft.graph.security.ediscoveryCaseMember object in the response body.
The following example shows a request.
POST https://graph.microsoft.com/v1.0/security/cases/ediscoveryCases/b0073e4e-4184-41c6-9eb7-8c8cc3e2288b/caseMembers
Content-Type: application/json
{
"recipientType": "user",
"smtpAddress": "johnadams@microsoft.com"
}[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
The following example shows the response.
HTTP/1.1 200 OK
Content-Type: application/json
{
"@odata.type": "microsoft.graph.security.ediscoveryCaseMember",
"recipientType": "user",
"id": "c4af6f9d-37f6-43f9-9e17-601544234146",
"displayName": "John Adams",
"smtpAddress": "johnadams@microsoft.com"
}The following example shows a request.
POST https://graph.microsoft.com/v1.0/security/cases/ediscoveryCases/b0073e4e-4184-41c6-9eb7-8c8cc3e2288b/caseMembers
Content-Type: application/json
{
"recipientType": "roleGroup",
"displayName": "Security Administrator"
}[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
The following example shows the response.
HTTP/1.1 200 OK
Content-Type: application/json
{
"@odata.type": "microsoft.graph.security.ediscoveryCaseMember",
"recipientType": "roleGroup",
"id": "b9fb4f22-5f90-47a0-b309-44fe96a959fd",
"displayName": "Security Administrator",
"smtpAddress": ""
}The following example shows a request.
POST https://graph.microsoft.com/v1.0/security/cases/ediscoveryCases/b0073e4e-4184-41c6-9eb7-8c8cc3e2288b/caseMembers
Content-Type: application/json
{
"recipientType": "user",
"id": "c4af6f9d-37f6-43f9-9e17-601544234146"
}[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
The following example shows the response.
HTTP/1.1 200 OK
Content-Type: application/json
{
"@odata.type": "microsoft.graph.security.ediscoveryCaseMember",
"recipientType": "user",
"id": "c4af6f9d-37f6-43f9-9e17-601544234146",
"displayName": "John Adams",
"smtpAddress": "johnadams@microsoft.com"
}The following example shows a request.
POST https://graph.microsoft.com/v1.0/security/cases/ediscoveryCases/b0073e4e-4184-41c6-9eb7-8c8cc3e2288b/caseMembers
Content-Type: application/json
{
"recipientType": "roleGroup",
"id": "b9fb4f22-5f90-47a0-b309-44fe96a959fd"
}[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
The following example shows the response.
HTTP/1.1 200 OK
Content-Type: application/json
{
"@odata.type": "microsoft.graph.security.ediscoveryCaseMember",
"recipientType": "roleGroup",
"id": "b9fb4f22-5f90-47a0-b309-44fe96a959fd",
"displayName": "Security Administrator",
"smtpAddress": ""
}