Group Permissions for Microsoft Graph
Application
| Permission | ID | Purpose | Description |
|---|---|---|---|
| Group.Create | bf7b1a76-6e77-406b-b258-bf5c7720e98f | Create groups | Allows the app to create groups without a signed-in user. |
| Group.Read.All | 5b567255-7703-4780-807c-7be8301ae99b | Read all groups | Allows the app to read group properties and memberships, and read conversations for all groups, without a signed-in user. |
| Group.ReadWrite.All | 62a82d76-70ea-41e2-9197-370581804d09 | Read and write all groups | Allows the app to create groups, read all group properties and memberships, update group properties and memberships, and delete groups. Also allows the app to read and write conversations. All of these operations can be performed by the app without a signed-in user. |
Delegated
| Permission | ID | Purpose | Description |
|---|---|---|---|
| Group.Read.All | 5f8c59db-677d-491f-a6b8-5f174b11ec1d | Read all groups | Allows the app to list groups, and to read their properties and all group memberships on behalf of the signed-in user. Also allows the app to read calendar, conversations, files, and other group content for all groups the signed-in user can access. |
| Group.ReadWrite.All | 4e46008b-f24c-477d-8fff-7bb4ec7aafe0 | Read and write all groups | Allows the app to create groups and read all group properties and memberships on behalf of the signed-in user. Additionally allows group owners to manage their groups and allows group members to update group content. |