policyRoot resource type
Namespace: microsoft.graph
Resource type exposing navigation properties for the policies singleton. Inherits from entity.
Methods
None
Properties
| Property | Type | Description |
|---|---|---|
| id | String | Unique identifier of the policy. Inherited from entity. |
Relationships
| Relationship | Type | Description |
|---|---|---|
| activityBasedTimeoutPolicies | activityBasedTimeoutPolicy collection | The policy that controls the idle time out for web sessions for applications. |
| adminConsentRequestPolicy | adminConsentRequestPolicy | The policy by which consent requests are created and managed for the entire tenant. |
| appManagementPolicies | appManagementPolicy collection | The policies that enforce app management restrictions for specific applications and service principals, overriding the defaultAppManagementPolicy. |
| authenticationFlowsPolicy | authenticationFlowsPolicy | The policy configuration of the self-service sign-up experience of external users. |
| authenticationMethodsPolicy | authenticationMethodsPolicy | The authentication methods and the users that are allowed to use them to sign in and perform multifactor authentication (MFA) in Microsoft Entra ID. |
| authenticationStrengthPolicies | authenticationStrengthPolicy collection | The authentication method combinations that are to be used in scenarios defined by Microsoft Entra Conditional Access. |
| authorizationPolicy | authorizationPolicy collection | The policy that controls Microsoft Entra authorization settings. |
| claimsMappingPolicies | claimsMappingPolicy collection | The claim-mapping policies for WS-Fed, SAML, OAuth 2.0, and OpenID Connect protocols, for tokens issued to a specific application. |
| conditionalAccessPolicies | conditionalAccessPolicy | The custom rules that define an access scenario. |
| crossTenantAccessPolicy | crossTenantAccessPolicy | The custom rules that define an access scenario when interacting with external Microsoft Entra tenants. |
| defaultAppManagementPolicy | tenantAppManagementPolicy | The tenant-wide policy that enforces app management restrictions for all applications and service principals. |
| featureRolloutPolicies | featureRolloutPolicy collection | The feature rollout policy associated with a directory object. |
| homeRealmDiscoveryPolicies | homeRealmDiscoveryPolicy collection | The policy to control Microsoft Entra authentication behavior for federated users. |
| identitySecurityDefaultsEnforcementPolicy | identitySecurityDefaultsEnforcementPolicy | The policy that represents the security defaults that protect against common attacks. |
| permissionGrantPolicies | permissionGrantPolicy collection | The policy that specifies the conditions under which consent can be granted. |
| roleManagementPolicies | unifiedRoleManagementPolicy collection | Specifies the various policies associated with scopes and roles. |
| roleManagementPolicyAssignments | unifiedRoleManagementPolicyAssignment collection | The assignment of a role management policy to a role definition object. |
| tokenIssuancePolicies | tokenIssuancePolicy collection | The policy that specifies the characteristics of SAML tokens issued by Microsoft Entra ID. |
| tokenLifetimePolicies | tokenLifetimePolicy collection | The policy that controls the lifetime of a JWT access token, an ID token, or a SAML 1.1/2.0 token issued by Microsoft Entra ID. |
JSON representation
The following JSON representation shows the resource type.
{
"@odata.type": "#microsoft.graph.policyRoot",
"id": "String (identifier)"
}