Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Namespace: microsoft.graph
Important
APIs under the /beta version in Microsoft Graph are subject to change. Use of these APIs in production applications is not supported. To determine whether an API is available in v1.0, use the Version selector.
In Microsoft Entra ID, a Mobile Device Management (MDM) policy defines the configuration and enforcement rules for managing devices that access corporate resources. MDM policies are designed to ensure secure, compliant, and efficient access to corporate resources across employee devices. When a device is enrolled, it automatically receives required configurations, applications, and security policies without manual IT intervention.
Inherits from mobilityManagementPolicy.
Methods
| Method | Return type | Description |
|---|---|---|
| List | mobileDeviceManagementPolicy collection | Get a list of the mobileDeviceManagementPolicy objects and their properties for mobile device management applications. |
| Get | mobileDeviceManagementPolicy | Read the properties and relationships of a mobileDeviceManagementPolicy object for a mobile device management application. |
| Update | None | Update the properties of a mobileDeviceManagementPolicy object for a mobile device management application. |
| List included groups | group collection | List included groups for a mobileDeviceManagementPolicy object for a mobile device management application. |
| Add group to policy | None | Add a group to the mobileDeviceManagementPolicy object for a mobile device management application. |
| Delete group from policy | None | Delete a group from the mobileDeviceManagementPolicy object for a mobile device management application. |
Properties
| Property | Type | Description |
|---|---|---|
| appliesTo | policyScope | Indicates the user scope of the MDM policy. The possible values are: none, all, selected. Inherited from mobilityManagementPolicy. The possible values are: none, all, selected, unknownFutureValue. |
| isMdmEnrollmentDuringRegistrationDisabled | Boolean | Controls the option if users in an automatic enrollment configuration on Microsoft Entra registered devices are prompted to MDM enroll their device in the Entra account registration flow. |
| complianceUrl | String | Compliance URL of the mobility management application. Inherited from mobilityManagementPolicy. |
| description | String | Description of the MDM application. Inherited from mobilityManagementPolicy. |
| discoveryUrl | String | Discovery URL of the MDM application. Inherited from mobilityManagementPolicy. |
| displayName | String | Display name of the MDM application. Inherited from mobilityManagementPolicy. |
| id | String | Object Id of the MDM application. Inherited from entity. Inherits from entity |
| isValid | Boolean | Whether policy is valid. Invalid policies may not be updated and should be deleted. Inherited from mobilityManagementPolicy. |
| termsOfUseUrl | String | Terms of Use URL of the MDM application. Inherited from mobilityManagementPolicy. |
Relationships
| Relationship | Type | Description |
|---|---|---|
| includedGroups | group collection | Microsoft Entra groups under the scope of the MDM policy if appliesTo is selected. Inherited from microsoft.graph.mobilityManagementPolicy |
JSON representation
The following JSON representation shows the resource type.
{
"@odata.type": "#microsoft.graph.mobileDeviceManagementPolicy",
"id": "String (identifier)",
"appliesTo": "String",
"complianceUrl": "String",
"description": "String",
"discoveryUrl": "String",
"displayName": "String",
"termsOfUseUrl": "String",
"isValid": "Boolean",
"isMdmEnrollmentDuringRegistrationDisabled": "Boolean"
}