-
Notifications
You must be signed in to change notification settings - Fork 167
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Azure Automation w/ Managed Identity - Update-MgDevice for non-Windows devices errors #2327
Comments
Thanks for following up on this. This is a duplicate of #2066. The API does not support changing disabling of non-Windows OS. This is now documented at https://learn.microsoft.com/en-us/graph/api/device-update?view=graph-rest-1.0&tabs=http :
Closing as duplicate of #2066. |
Where else can I present my case? I posted on the feedback portal, is there a dev portal besides github? Microsoft recommends disabling a device for a grace period before deletion, which is what my script/automation is doing: https://learn.microsoft.com/en-us/azure/active-directory/devices/manage-stale-devices
Now the documentation for "Update-MgDevice" which is required to disable a device states we cannot update non-windows devices using an application (Managed Identity): https://learn.microsoft.com/en-us/graph/api/device-update?view=graph-rest-1.0&tabs=http
However in Azure Automation we are required to use a Managed Identity since Run-As accounts are going away: https://learn.microsoft.com/en-us/azure/automation/manage-run-as-account
|
The API feature request page (feedback portal) is where all API feature request like this one should go - https://developer.microsoft.com/graph/support. Please upvote on existing requests to surface them to the API teams. |
I searched the graph known issues page with no results. There is one issue report here that is closed saying that this is a known issue and links back to the known issues page, but there is nothing there describing this issue.
PS Runtime 5.1
Graph Modules 2.6.1
Automation system managed identity with Device.ReadWrite.All and Directory.ReadWrite.All permissions
Windows devices can be disabled. Non-Windows devices give the following error.
The text was updated successfully, but these errors were encountered: