Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Namespace: microsoft.graph
Important: Microsoft supports Intune /beta APIs, but they are subject to more frequent change. Microsoft recommends using version v1.0 when possible. Check an API's availability in version v1.0 using the Version selector.
Note: The Microsoft Graph API for Intune requires an active Intune license for the tenant.
Update the properties of a aospDeviceOwnerCompliancePolicy object.
This API is available in the following national cloud deployments.
| Global service | US Government L4 | US Government L5 (DOD) | China operated by 21Vianet | 
|---|---|---|---|
| ✅ | ✅ | ✅ | ✅ | 
Permissions
One of the following permissions is required to call this API. To learn more, including how to choose permissions, see Permissions.
| Permission type | Permissions (from least to most privileged) | 
|---|---|
| Delegated (work or school account) | DeviceManagementConfiguration.ReadWrite.All | 
| Delegated (personal Microsoft account) | Not supported. | 
| Application | DeviceManagementConfiguration.ReadWrite.All | 
HTTP Request
PATCH /deviceManagement/deviceCompliancePolicies/{deviceCompliancePolicyId}
Request headers
| Header | Value | 
|---|---|
| Authorization | Bearer {token}. Required. Learn more about authentication and authorization. | 
| Accept | application/json | 
Request body
In the request body, supply a JSON representation for the aospDeviceOwnerCompliancePolicy object.
The following table shows the properties that are required when you create the aospDeviceOwnerCompliancePolicy.
| Property | Type | Description | 
|---|---|---|
| roleScopeTagIds | String collection | List of Scope Tags for this Entity instance. Inherited from deviceCompliancePolicy | 
| id | String | Key of the entity. Inherited from deviceCompliancePolicy | 
| createdDateTime | DateTimeOffset | DateTime the object was created. Inherited from deviceCompliancePolicy | 
| description | String | Admin provided description of the Device Configuration. Inherited from deviceCompliancePolicy | 
| lastModifiedDateTime | DateTimeOffset | DateTime the object was last modified. Inherited from deviceCompliancePolicy | 
| displayName | String | Admin provided name of the device configuration. Inherited from deviceCompliancePolicy | 
| version | Int32 | Version of the device configuration. Inherited from deviceCompliancePolicy | 
| osMinimumVersion | String | Minimum Android version. | 
| osMaximumVersion | String | Maximum Android version. | 
| minAndroidSecurityPatchLevel | String | Minimum Android security patch level. | 
| securityBlockJailbrokenDevices | Boolean | Indicates the device should not be rooted. When TRUE, if the device is detected as rooted it will be reported non-compliant. When FALSE, the device is not reported as non-compliant regardless of device rooted state. Default is FALSE. | 
| passwordRequired | Boolean | Require a password to unlock device. | 
| passwordRequiredType | androidDeviceOwnerRequiredPasswordType | Type of characters in password. Possible values are: deviceDefault,required,numeric,numericComplex,alphabetic,alphanumeric,alphanumericWithSymbols,lowSecurityBiometric,customPassword. | 
| passwordMinutesOfInactivityBeforeLock | Int32 | Minutes of inactivity before a password is required. Valid values 1 to 8640 | 
| passwordMinimumLength | Int32 | Minimum password length. Valid values 4 to 16 | 
| storageRequireEncryption | Boolean | Require encryption on Android devices. | 
Response
If successful, this method returns a 200 OK response code and an updated aospDeviceOwnerCompliancePolicy object in the response body.
Example
Request
Here is an example of the request.
PATCH https://graph.microsoft.com/beta/deviceManagement/deviceCompliancePolicies/{deviceCompliancePolicyId}
Content-type: application/json
Content-length: 636
{
  "@odata.type": "#microsoft.graph.aospDeviceOwnerCompliancePolicy",
  "roleScopeTagIds": [
    "Role Scope Tag Ids value"
  ],
  "description": "Description value",
  "displayName": "Display Name value",
  "version": 7,
  "osMinimumVersion": "Os Minimum Version value",
  "osMaximumVersion": "Os Maximum Version value",
  "minAndroidSecurityPatchLevel": "Min Android Security Patch Level value",
  "securityBlockJailbrokenDevices": true,
  "passwordRequired": true,
  "passwordRequiredType": "required",
  "passwordMinutesOfInactivityBeforeLock": 5,
  "passwordMinimumLength": 5,
  "storageRequireEncryption": true
}
Response
Here is an example of the response. Note: The response object shown here may be truncated for brevity. All of the properties will be returned from an actual call.
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 808
{
  "@odata.type": "#microsoft.graph.aospDeviceOwnerCompliancePolicy",
  "roleScopeTagIds": [
    "Role Scope Tag Ids value"
  ],
  "id": "0837b942-b942-0837-42b9-370842b93708",
  "createdDateTime": "2017-01-01T00:02:43.5775965-08:00",
  "description": "Description value",
  "lastModifiedDateTime": "2017-01-01T00:00:35.1329464-08:00",
  "displayName": "Display Name value",
  "version": 7,
  "osMinimumVersion": "Os Minimum Version value",
  "osMaximumVersion": "Os Maximum Version value",
  "minAndroidSecurityPatchLevel": "Min Android Security Patch Level value",
  "securityBlockJailbrokenDevices": true,
  "passwordRequired": true,
  "passwordRequiredType": "required",
  "passwordMinutesOfInactivityBeforeLock": 5,
  "passwordMinimumLength": 5,
  "storageRequireEncryption": true
}