conditionalAccessApplications resource type

2025-03-20

Namespace: microsoft.graph

Represents the applications and user actions included in and excluded from the conditional access policy.

Properties

Property	Type	Description
excludeApplications	String collection	Can be one of the following: The list of client IDs (appId) explicitly excluded from the policy. `Office365` - For the list of apps included in `Office365`, see Apps included in Conditional Access Office 365 app suite `MicrosoftAdminPortals` - For more information, see Conditional Access Target resources: Microsoft Admin Portals
includeApplications	String collection	Can be one of the following: The list of client IDs (appId) the policy applies to, unless explicitly excluded (in excludeApplications) `All` `Office365` - For the list of apps included in `Office365`, see Apps included in Conditional Access Office 365 app suite `MicrosoftAdminPortals` - For more information, see Conditional Access Target resources: Microsoft Admin Portals
applicationFilter	conditionalAccessFilter	Filter that defines the dynamic-application-syntax rule to include/exclude cloud applications. A filter can use custom security attributes to include/exclude applications.
includeUserActions	String collection	User actions to include. Supported values are `urn:user:registersecurityinfo` and `urn:user:registerdevice`

Relationships

None.

JSON representation

The following JSON representation shows the resource type.

{
  "excludeApplications": ["String"],
  "includeApplications": ["String"],
  "applicationFilter": {"@odata.type": "microsoft.graph.conditionalAccessFilter"},
  "includeUserActions": ["String"]
}

Feedback

Was this page helpful?