Why are 'Directory.Read.All' and 'User.Read.All' permissions required in Active Directory Integration?

These Microsoft Graph API permissions are required to securely read user and directory data from Azure Active Directory (Azure AD).

They enable the system to:

  • Retrieve user profile information
  • Automatically create Digital Business Cards from Azure AD data
  • Synchronize card details when user information is updated in Azure AD

These permissions are used only to read directory data necessary for card creation and synchronization.

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.

Still need help? Contact Us Contact Us

Related Articles