Microsoft Graph · Schema

conditionalAccessApplications

Azure ADCollaborationContactsDocumentsEmailGraphIdentityMicrosoftOffice 365PresentationsProductivitySpreadsheetsT1Tasks

Properties

Name Type Description
applicationFilter object Filter that defines the dynamic-application-syntax rule to include/exclude cloud applications. A filter can use custom security attributes to include/exclude applications.
excludeApplications array Can be one of the following: The list of client IDs (appId) explicitly excluded from the policy. Office365 - For the list of apps included in Office365, see Apps included in Conditional Access Office
includeApplications array Can be one of the following: The list of client IDs (appId) the policy applies to, unless explicitly excluded (in excludeApplications) All Office365 - For the list of apps included in Office365, see A
includeAuthenticationContextClassReferences array
includeUserActions array User actions to include. Supported values are urn:user:registersecurityinfo and urn:user:registerdevice
@odata.type string
View JSON Schema on GitHub

JSON Schema

microsoft-graph-microsoftgraphconditionalaccessapplications-schema.json Raw ↑ 
{
  "$schema": "https://json-schema.org/draft/2020-12/schema",
  "$id": "#/components/schemas/microsoft.graph.conditionalAccessApplications",
  "title": "conditionalAccessApplications",
  "required": [
    "@odata.type"
  ],
  "type": "object",
  "properties": {
    "applicationFilter": {
      "anyOf": [
        {
          "$ref": "#/components/schemas/microsoft.graph.conditionalAccessFilter"
        },
        {
          "type": "object",
          "nullable": true
        }
      ],
      "description": "Filter that defines the dynamic-application-syntax rule to include/exclude cloud applications. A filter can use custom security attributes to include/exclude applications."
    },
    "excludeApplications": {
      "type": "array",
      "items": {
        "type": "string"
      },
      "description": "Can be one of the following:  The list of client IDs (appId) explicitly excluded from the policy. Office365 - For the list of apps included in Office365, see Apps included in Conditional Access Office 365 app suite  MicrosoftAdminPortals - For more information, see Conditional Access Target resources: Microsoft Admin Portals"
    },
    "includeApplications": {
      "type": "array",
      "items": {
        "type": "string"
      },
      "description": "Can be one of the following:  The list of client IDs (appId) the policy applies to, unless explicitly excluded (in excludeApplications)  All  Office365 - For the list of apps included in Office365, see Apps included in Conditional Access Office 365 app suite  MicrosoftAdminPortals - For more information, see Conditional Access Target resources: Microsoft Admin Portals"
    },
    "includeAuthenticationContextClassReferences": {
      "type": "array",
      "items": {
        "type": "string"
      }
    },
    "includeUserActions": {
      "type": "array",
      "items": {
        "type": "string"
      },
      "description": "User actions to include. Supported values are urn:user:registersecurityinfo and urn:user:registerdevice"
    },
    "@odata.type": {
      "type": "string"
    }
  }
}