Update deviceManagementDerivedCredentialSettings
Namespace: microsoft.graph
Important: Microsoft Graph APIs under the /beta version are subject to change; production use is not supported.
Note: The Microsoft Graph API for Intune requires an active Intune license for the tenant.
Update the properties of a deviceManagementDerivedCredentialSettings object.
## Permissions
One of the following permissions is required to call this API. To learn more, including how to choose permissions, see Permissions.
| Permission type | Permissions (from most to least privileged) |
|---|---|
| Delegated (work or school account) | |
| Device configuration | DeviceManagementConfiguration.ReadWrite.All |
| Resource Access Policy | DeviceManagementConfiguration.ReadWrite.All |
| Delegated (personal Microsoft account) | Not supported. |
| Application | |
| Device configuration | DeviceManagementConfiguration.ReadWrite.All |
| Resource Access Policy | DeviceManagementConfiguration.ReadWrite.All |
This API is available in the following national cloud deployments.
| Global service | US Government L4 | US Government L5 (DOD) | China operated by 21Vianet |
|---|---|---|---|
| ✅ | ✅ | ✅ | ✅ |
HTTP Request
PATCH /deviceManagement/derivedCredentials/{deviceManagementDerivedCredentialSettingsId}
PATCH /deviceManagement/deviceConfigurations/{deviceConfigurationId}/derivedCredentialSettings
PATCH /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.iosVpnConfiguration/derivedCredentialSettings
PATCH /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.iosEnterpriseWiFiConfiguration/derivedCredentialSettings
PATCH /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.iosEasEmailProfileConfiguration/derivedCredentialSettings
PATCH /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.iosDerivedCredentialAuthenticationConfiguration/derivedCredentialSettings
Request headers
| Header | Value |
|---|---|
| Authorization | Bearer {token}. Required. Learn more about authentication and authorization. |
| Accept | application/json |
Request body
In the request body, supply a JSON representation for the deviceManagementDerivedCredentialSettings object.
The following table shows the properties that are required when you create the deviceManagementDerivedCredentialSettings.
| Property | Type | Description |
|---|---|---|
| id | String | Unique identifier for the Derived Credential |
| RA Policy | ||
| helpUrl | String | The URL that will be accessible to end users as they retrieve a derived credential using the Company Portal. |
| displayName | String | The display name for the profile. |
| issuer | deviceManagementDerivedCredentialIssuer | The derived credential provider to use. Possible values are: intercede, entrustDatacard, purebred. |
| notificationType | deviceManagementDerivedCredentialNotificationType | The methods used to inform the end user to open Company Portal to deliver Wi-Fi, VPN, or email profiles that use certificates to the device. Possible values are: none, companyPortal, email. |
Response
If successful, this method returns a 200 OK response code and an updated deviceManagementDerivedCredentialSettings object in the response body.
Example
Request
Here is an example of the request.
PATCH https://graph.microsoft.com/beta/deviceManagement/deviceConfigurations/{deviceConfigurationId}/derivedCredentialSettings
Content-type: application/json
Content-length: 83
{
"@odata.type": "#microsoft.graph.deviceManagementDerivedCredentialSettings"
}
Response
Here is an example of the response. Note: The response object shown here may be truncated for brevity. All of the properties will be returned from an actual call.
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 132
{
"@odata.type": "#microsoft.graph.deviceManagementDerivedCredentialSettings",
"id": "bc650741-0741-bc65-4107-65bc410765bc"
}