Microsoft Graph · Schema

conditionalAccessUsers

Azure ADCollaborationContactsDocumentsEmailGraphIdentityMicrosoftOffice 365PresentationsProductivitySpreadsheetsT1Tasks

Properties

Name Type Description
excludeGroups array Group IDs excluded from scope of policy.
excludeGuestsOrExternalUsers object Internal guests or external users excluded from the policy scope. Optionally populated.
excludeRoles array Role IDs excluded from scope of policy.
excludeUsers array User IDs excluded from scope of policy and/or GuestsOrExternalUsers.
includeGroups array Group IDs in scope of policy unless explicitly excluded.
includeGuestsOrExternalUsers object Internal guests or external users included in the policy scope. Optionally populated.
includeRoles array Role IDs in scope of policy unless explicitly excluded.
includeUsers array User IDs in scope of policy unless explicitly excluded, None, All, or GuestsOrExternalUsers.
@odata.type string
View JSON Schema on GitHub

JSON Schema

microsoft-graph-microsoftgraphconditionalaccessusers-schema.json Raw ↑ 
{
  "$schema": "https://json-schema.org/draft/2020-12/schema",
  "$id": "#/components/schemas/microsoft.graph.conditionalAccessUsers",
  "title": "conditionalAccessUsers",
  "required": [
    "@odata.type"
  ],
  "type": "object",
  "properties": {
    "excludeGroups": {
      "type": "array",
      "items": {
        "type": "string"
      },
      "description": "Group IDs excluded from scope of policy."
    },
    "excludeGuestsOrExternalUsers": {
      "anyOf": [
        {
          "$ref": "#/components/schemas/microsoft.graph.conditionalAccessGuestsOrExternalUsers"
        },
        {
          "type": "object",
          "nullable": true
        }
      ],
      "description": "Internal guests or external users excluded from the policy scope. Optionally populated."
    },
    "excludeRoles": {
      "type": "array",
      "items": {
        "type": "string"
      },
      "description": "Role IDs excluded from scope of policy."
    },
    "excludeUsers": {
      "type": "array",
      "items": {
        "type": "string"
      },
      "description": "User IDs excluded from scope of policy and/or GuestsOrExternalUsers."
    },
    "includeGroups": {
      "type": "array",
      "items": {
        "type": "string"
      },
      "description": "Group IDs in scope of policy unless explicitly excluded."
    },
    "includeGuestsOrExternalUsers": {
      "anyOf": [
        {
          "$ref": "#/components/schemas/microsoft.graph.conditionalAccessGuestsOrExternalUsers"
        },
        {
          "type": "object",
          "nullable": true
        }
      ],
      "description": "Internal guests or external users included in the policy scope. Optionally populated."
    },
    "includeRoles": {
      "type": "array",
      "items": {
        "type": "string"
      },
      "description": "Role IDs in scope of policy unless explicitly excluded."
    },
    "includeUsers": {
      "type": "array",
      "items": {
        "type": "string"
      },
      "description": "User IDs in scope of policy unless explicitly excluded, None, All, or GuestsOrExternalUsers."
    },
    "@odata.type": {
      "type": "string"
    }
  }
}