Microsoft Entra AD Synchronization Service
Permissions
Application Permissions
Your application runs as a background service or daemon without a signed-in user.
| Role | Role Id | Display Name | Description |
|---|---|---|---|
| ADSynchronization.ReadWrite.All | ab43b826-2c7a-4aff-9ecd-d0629d0ca6a9 | Read, write and manage identity synchronization with on-premises via Microsoft Entra Connect | Allows the app to sync with on-prem via the Microsoft Entra Connect tools and read/write cloud identity data. |
Delegated Permissions
Your application needs to access the API as the signed-in user.
| Role | Role Id | Display Name | Description |
|---|---|---|---|
| ADSynchronization.ReadWrite.All | 0b41ed4d-5f52-442b-8952-ea7d90719860 | Read, write, and manage identity synchronization with on-premises via Microsoft Entra Connect | Allows the app to read, write, and manage identity data synced with on-premises via Microsoft Entra Connect. |