ℹ️ Info
Druva uses .ReadWrite.All
to create, read, or update data in Microsoft Entra ID.
Druva uses .Read.All
to read data from Microsoft Entra ID.
Users
API permissions | Permission type | Usage |
| Application | To backup and restore user objects |
Groups
API permissions | Permission type | Usage |
| Application | To backup and restore group objects and their members/owners |
Applications
API permissions | Permission type | Usage |
| Application | To backup and restore application objects and their members/owners |
ServicePrincipals
API permissions | Permission type | Usage |
| Application | To backup and restore enterprise applications objects and their members/owners |
Devices
API permissions | Permission type | Usage |
| Application | To backup device objects and their owners |
directoryRole
API permissions | Permission type | Usage |
| Application | To backup inbuilt directory roles and their assignments/members |
Custom Roles
API permissions | Permission type | Usage |
| Application | To backup and restore custom roles and their assignments/members (P2/E3/E5 license is required) |
User Setting(Authorization Policy)
API permissions | Permission type | Usage |
| Application | To backup and update user settings |
TenantSetting
API permissions | Permission type | Usage |
| Application | To backup and update tenant settings, getting company branding, organization information |
Administrative Unit
API permissions | Permission type | Usage |
| Application | To backup and restore administrative units and manage membership (users/groups) inside them. |
Conditional Access policy
API permissions | Permission type | Usage |
| Application | To backup and restore conditional access policies |