Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Namespace: microsoft.graph
Represents users, groups, and roles included in and excluded from the policy scope.
Properties
| Property | Type | Description |
|---|---|---|
| excludeGroups | String collection | Group IDs excluded from scope of policy. |
| excludeGuestsOrExternalUsers | conditionalAccessGuestsOrExternalUsers | Internal guests or external users excluded from the policy scope. Optionally populated. |
| excludeRoles | String collection | Role IDs excluded from scope of policy. |
| excludeUsers | String collection | User IDs excluded from scope of policy and/or GuestsOrExternalUsers. |
| includeGroups | String collection | Group IDs in scope of policy unless explicitly excluded. |
| includeGuestsOrExternalUsers | conditionalAccessGuestsOrExternalUsers | Internal guests or external users included in the policy scope. Optionally populated. |
| includeRoles | String collection | Role IDs in scope of policy unless explicitly excluded. |
| includeUsers | String collection | User IDs in scope of policy unless explicitly excluded, None, All, or GuestsOrExternalUsers. |
Relationships
None.
JSON representation
The following JSON representation shows the resource type.
{
"excludeGroups": ["String"],
"excludeGuestsOrExternalUsers": {"@odata.type": "microsoft.graph.conditionalAccessGuestOrExternalUsers"},
"excludeRoles": ["String"],
"excludeUsers": ["String"],
"includeGroups": ["String"],
"includeGuestsOrExternalUsers": {"@odata.type": "microsoft.graph.conditionalAccessGuestOrExternalUsers"},
"includeRoles": ["String"],
"includeUsers": ["String"]
}