deviceRegistrationPolicy resource type
Namespace: microsoft.graph
Important
APIs under the /beta version in Microsoft Graph are subject to change. Use of these APIs in production applications is not supported. To determine whether an API is available in v1.0, use the Version selector.
Represents the policy scope that controls quota restrictions, additional authentication, and authorization policies to register device identities to your organization.
Methods
| Method | Return type | Description |
|---|---|---|
| Get deviceRegistrationPolicy | deviceRegistrationPolicy | Read the properties of a deviceRegistrationPolicy object. |
| Update deviceRegistrationPolicy | deviceRegistrationPolicy | Update the properties of a deviceRegistrationPolicy object. |
Properties
| Property | Type | Description |
|---|---|---|
| azureADJoin | azureADJoinPolicy | Specifies the authorization policy for controlling registration of new devices using Microsoft Entra join within your organization. Required. For more information, see What is a device identity?. |
| azureADRegistration | azureADRegistrationPolicy | Specifies the authorization policy for controlling registration of new devices using Microsoft Entra registered within your organization. Required. For more information, see What is a device identity?. |
| description | String | The description of the device registration policy. It's always set to Tenant-wide policy that manages intial provisioning controls using quota restrictions, additional authentication and authorization checks. Read-only. |
| displayName | String | The name of the device registration policy. It's always set to Device Registration Policy. Read-only. |
| id | String | The identifier of the device registration policy. It's always set to deviceRegistrationPolicy. Read-only. |
| localAdminPassword | localAdminPasswordSettings | Specifies the setting for Local Admin Password Solution (LAPS) within your organization. |
| multiFactorAuthConfiguration | multiFactorAuthConfiguration | Specifies the authentication policy for a user to complete registration using Microsoft Entra join or Microsoft Entra registered within your organization. The possible values are: notRequired, required, unknownFutureValue. The default value is notRequired. |
| userDeviceQuota | Int32 | Specifies the maximum number of devices that a user can have within your organization before blocking new device registrations. The default value is set to 50. If this property isn't specified during the policy update operation, it's automatically reset to 0 to indicate that users aren't allowed to join any devices. |
Relationships
None.
JSON representation
The following JSON representation shows the resource type.
{
"@odata.type": "#microsoft.graph.deviceRegistrationPolicy",
"id": "String (identifier)",
"displayName": "String",
"description": "String",
"userDeviceQuota": "Integer",
"multiFactorAuthConfiguration": "String",
"azureADRegistration": {
"@odata.type": "microsoft.graph.azureADRegistrationPolicy"
},
"azureADJoin": {
"@odata.type": "microsoft.graph.azureADJoinPolicy"
},
"localAdminPassword": {
"@odata.type": "microsoft.graph.localAdminPasswordSettings"
}
}
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for