question

AgrawalMohit-6972 avatar image
0 Votes"
AgrawalMohit-6972 asked saldana-msft edited

Switch to Graph API from AAD Graph

The b2c-extensions-app used for extension attributes uses AAD Graph Api permissions. I am getting below warning message:

This application is using Azure AD Graph API, which is on a deprecation path. Starting June 30th, 2020 we will no longer add any new features to Azure AD Graph API. We strongly recommend that you upgrade your application to use Microsoft Graph API instead of Azure AD Graph API to access Azure Active Directory resources.

Now when I configure similar Microsoft Graph API permissions will it also require to make changes in custom policies?



azure-ad-b2cmicrosoft-graph-identityazure-ad-graph-deprecation
· 1
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

amanpreetsingh-msft avatar image
0 Votes"
amanpreetsingh-msft answered AgrawalMohit-6972 commented

Hi @AgrawalMohit-6972 • Thank you for reaching out.

Do you have any references to https://graph.windows.net in your custom policy?

If your custom policy is configured to use https://graph.microsoft.com, you are not required to make any changes. If there are any references to https://graph.windows.net, you need to review your policy to identify what that graph call is intended to do and replace that with Microsoft Graph API.

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

· 2
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

amanpreetsingh-msft avatar image amanpreetsingh-msft ·

Hi @AgrawalMohit-6972 • Just checking if you have any further questions.

0 Votes 0 ·
AgrawalMohit-6972 avatar image AgrawalMohit-6972 amanpreetsingh-msft ·

Sorry, I could not reply earlier. I have no references to "https://graph.windows.net" in my custom policy. But to store custom/extension attributes using b2c custom policy we use b2c app as stated in this article:

https://docs.microsoft.com/en-us/azure/active-directory-b2c/user-flow-custom-attributes?pivots=b2c-custom-policy

So, my question was basically do we only need to make api permission changes in this app or doe we have to make any policy changes.
0 Votes 0 ·