restricting access while using client credentials grant flow RRS feed

  • Question

  • I am writing some automation for Microsoft Teams using powershell. This is mostly automating the lifecycle of teams (create new, destroy, get logs, etc). I want to use the client credentials grant flow to obtain my token. I am able to do this, but now I want to restrict that token so that it can only access specific o365 groups, and the MS Teams/o365 groups that it creates. How can I do this? 

    If I give API permissions for chat.readWrite.all, and Group.ReadWrite.All then infosec will not approve that!


    Thursday, June 6, 2019 10:37 PM


All replies