How do you grant the nesecarry privilages to access devicemanagement through the graph api?
I'm trying to make calls to an endpoint like this, but i'm not allowed to. https://graph.microsoft.com/beta/deviceAppManagement/mobileApps
To use the Intune API it seems you need the DeviceManagementConfiguration.ReadWrite.All
scope, but i can't find where i set this.
I've tried to both register my app in the Azure AD and register the application in the app registration portal.
Do I need to download the app manifest and manually set this scope?
I work on the Microsoft Intune team, specifically on the integration between Microsoft Intune and Microsoft Graph.
Currently the scopes are not available in the Azure AD endpoints, but we are working to resolve that by the end of the month, since the scopes are not yet available we are not enforcing that they are assigned to your app. Once the scopes are available in the Azure AD endpoints we will enforce that they are assigned to your app.
Note that if you are getting access denied errors it can be because one of two possible reasons:
Hope this helps
Peter