Feedback by UserVoice

Feature Requests and Feedback

I suggest you ...

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. expose “lastModifiedDateTime” on user

    I need to retrieve the last modified date of user profiles in Office 365 from the Graph API.

    Could you please provide the endpoint similar to https://graph.microsoft.com/beta/me/?$select=createdDateTime

    But have it be for the last time the user profile was modified by the user or admin, would be awesome for it to be https://graph.microsoft.com/beta/me/?$select=lastModifiedDateTime

    64 votes
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      2 comments  ·  Microsoft Graph/O365 REST APIs  ·  Flag idea as inappropriate…  ·  Admin →
    • Support Azure Conditional Access for Microsoft Graph

      A lot of Microsoft products does not work as expected due to the fact the Microsoft Graph does not support Azure Conditional Access. Among the applications I can mention is Microsoft Teams, ToDo, etc. that all rely on the Microsoft Graph and breaks to to limited support or no support for Azure Conditional Access.

      Teams:
      https://microsoftteams.uservoice.com/forums/555103-public/suggestions/32657161-conditional-access-team-authentication

      ToDo:
      https://todo.uservoice.com/forums/597175-feature-suggestions/suggestions/32007451-add-support-for-conditional-access

      /Peter Selch Dahl - Azure MVP

      85 votes
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        Signed in as (Sign out)
        You have left! (?) (thinking…)
        0 comments  ·  Microsoft Graph/O365 REST APIs  ·  Flag idea as inappropriate…  ·  Admin →
      • Provide Graph API to check user has enabled Azure AD MFA or not

        Currently there is no API for identifying whether user is enabled with Azure AD MFA or not, so kindly provide

        1 vote
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          0 comments  ·  Microsoft Graph/O365 REST APIs  ·  Flag idea as inappropriate…  ·  Admin →
        • Provide API access to AAD user MFA Properties

          Would be good to not only retrieve the state of the authentication requirements, but the details around MFA as well: MFA Methods, etc (StrongAuthenticationMethod, StrongAuthenticationRequirement, StrongAuthenticationDetails that was available in PS for AAD V1)

          30 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            Signed in as (Sign out)
            You have left! (?) (thinking…)
            1 comment  ·  Microsoft Graph/O365 REST APIs  ·  Flag idea as inappropriate…  ·  Admin →
          • Support $count for group members and owners

            Currently $count is not supported on `directoryObjects` like users and groups. Although it would be great to know how much members / owners are in a group. The only way right now is via querying the members or owners endpoint of the group and checking the array length. Depending on the number of members, this could lead to multiple calls.

            It would be great that the `$count` parameter would be supported so that only one call is required.

            45 votes
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              Signed in as (Sign out)
              You have left! (?) (thinking…)
              0 comments  ·  Microsoft Graph/O365 REST APIs  ·  Flag idea as inappropriate…  ·  Admin →
            • Get license assignment paths like GroupsAssigningLicense property in PowerShell

              Allow retrieval of license assignment paths (shown in the Licenses blade of the Microsoft Azure Portal) like the GroupsAssigningLicense property does on license objects in PowerShell. Need to be able to determine if user's license is coming from a group licensing assignment ("inherited") or direct. Then must remove the direct licenses which have a corresponding inherited license. There's a good write-up on how to do this from PowerShell (https://docs.microsoft.com/en-us/azure/active-directory/active-directory-licensing-ps-examples#remove-direct-licenses-for-users-with-group-licenses), but the critical piece (the GroupsAssigningLicense property) is missing from MS Graph.

              With the introduction of group licensing, this feature would allow our self-service licensing app to prevent sending…

              53 votes
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                Signed in as (Sign out)
                You have left! (?) (thinking…)
                1 comment  ·  Microsoft Graph/O365 REST APIs  ·  Flag idea as inappropriate…  ·  Admin →
              • Add a "My Groups - Read/Write" Permission (that does not require Admin Consent)

                It should not be necessary to require an admin consent to do Group read write operations through the graph API. There should be a permission for My Groups.

                166 votes
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                  7 comments  ·  Microsoft Graph/O365 REST APIs  ·  Flag idea as inappropriate…  ·  Admin →
                • Provide Exchange Room or Equipment information

                  Please provide us with the information regarding room and/or equipment mailboxes that are available in Exchange. Including the resource properties so you can execute queries to retrieve that information.

                  112 votes
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                    7 comments  ·  Microsoft Graph/O365 REST APIs  ·  Flag idea as inappropriate…  ·  Admin →
                  • Graph - Provide access to ItemAttachment bytes

                    In the EWS api we could download an email attachment that is itself an email (say message.eml) as a byte array, untouched. This does not appear to be possible in the Graph API. The itemAttachment is visible using $expand=microsoft.graph.itemattachment/item but only as exploded json and attachments to the itemAttachment itself are not there.

                    I work in a Search and Rescue environment (lives are at stake) and from an auditing/quality/completeness perspective I need to know exactly what was attached to the email (the bytes). I think the API needs to be enhanced to provide this. Can I suggest that the api…

                    29 votes
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                      1 comment  ·  Microsoft Graph/O365 REST APIs  ·  Flag idea as inappropriate…  ·  Admin →
                    • Add the possibility to specify authorizations on email fields more precisely

                      Currently, you can specify Read.all. That gives you access to everything in the email. For a company admin, it opens all the content you might not need. For B2B apps, companies have sensitive content and security policies, : it would be great to be able to specify sub-parameters for Read.all, listing fields you ask for access and those you won't.
                      Clear example : Read.all / everything BUT body --> the company admin is sure that with this scope, the app can't access sensitive data .

                      3 votes
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                        0 comments  ·  Microsoft Graph/O365 REST APIs  ·  Flag idea as inappropriate…  ·  Admin →

                        We have just started this in this months sprint. The new permission will be Mail.ReadBasic and will allow you to access mail messages without access to the body or their attachments.
                        There is further investigation into whether we can provide more granular permission scopes where developers can request specific properties they want access to.
                        ^JT

                      • Allow updating any users Photo with User.ReadWrite.All scope

                        Currently even if you have the User.ReadWrite.All you cant update another users photo via:

                        PUT /beta/users/{User ID}/photo/$value

                        This would be VERY helpful.

                        41 votes
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)
                          2 comments  ·  Microsoft Graph/O365 REST APIs  ·  Flag idea as inappropriate…  ·  Admin →
                        • Don't see your idea?

                        Feedback and Knowledge Base