msgraph-sdk-powershell icon indicating copy to clipboard operation
msgraph-sdk-powershell copied to clipboard

Published 20 hours ago verified publisher icon microsoftgraph

Delegated access: custom application for Microsoft Graph PowerShell - Support for Conditional Access

Open nkasco opened this issue 1 year ago • 2 comments

Is your feature request related to a problem? Please describe. I see that there is guidance in Connect-MgGraph.md on how to create a custom application to restrict access, even for delegated use. However, that links out here which uses an example of a "Microsoft Graph PowerShell - High Privilege admin use only" app.

The problem is, it's instructing you to configure the app as a Public Client. These apps are not Conditional Access aware.

Describe the solution you'd like Provide guidance and support in this SDK for custom applications for use with Microsoft Graph PowerShell delegated scenarios, and are Conditional Access aware.

nkasco avatar Jan 12 '24 12:01 nkasco

Hi @nkasco ,

Thank you for raising the issue. What kind of documentation would you be looking for, given that the configuration of Conditional Access is well documented on the Entra side? E.g., https://learn.microsoft.com/en-us/entra/identity-platform/developer-guide-conditional-access-authentication-context

petrhollayms avatar Jun 11 '24 16:06 petrhollayms

Hey @petrhollayms

I'd be looking for guidance on how to properly configure a high privilege App Registration in such a way that works with the PowerShell SDK and is also conditional access aware. I think that's less about conditional access configuration and more about the App Registration.

nkasco avatar Jun 11 '24 16:06 nkasco