List userRegistrationDetails
Namespace: microsoft.graph
Get a list of the authentication methods registered for a user as defined in the userRegistrationDetails object. This method doesn't work for disabled users.
This API is available in the following national cloud deployments.
Global service | US Government L4 | US Government L5 (DOD) | China operated by 21Vianet |
---|---|---|---|
✅ | ✅ | ✅ | ✅ |
Permissions
One of the following permissions is required to call this API. To learn more, including how to choose permissions, see Permissions.
Permission type | Permissions (from least to most privileged) |
---|---|
Delegated (work or school account) | AuditLog.Read.All |
Delegated (personal Microsoft account) | Not supported. |
Application | AuditLog.Read.All |
For delegated scenarios, the calling user must have at least one of the following Microsoft Entra roles:
- Reports Reader
- Security Reader
- Security Administrator
- Global Reader
HTTP request
GET /reports/authenticationMethods/userRegistrationDetails
Optional query parameters
This method supports the $filter
OData query parameter to help customize the response. You can apply $filter
on one or more of the following properties of the userRegistrationDetails resource.
Property | Description | Example |
---|---|---|
isMfaCapable | Filter for users who are ready to perform password reset or multi-factor authentication (MFA). Supported filter operators: eq . |
/reports/authenticationMethods/userRegistrationDetails?$filter=isMfaCapable eq true |
isMfaRegistered | Filter for users who are registered for MFA. Supported filter operators are: eq . |
/reports/authenticationMethods/userRegistrationDetails?$filter=isMfaRegistered eq true |
isSsprEnabled | Filter for users who have been enabled for SSPR. Supported filter operators are: eq . |
/reports/authenticationMethods/userRegistrationDetails?$filter=isSsprEnabled eq true . |
isSsprRegistered | Filter for users who have registered for self-service password reset (SSPR). Supported filter operators are: eq . |
/reports/authenticationMethods/userRegistrationDetails?$filter=isSsprRegistered eq true |
methodsRegistered | Filter by the authentication methods used during registration. Supported filter operators are: eq . |
/reports/authenticationMethods/userRegistrationDetails?$filter=methodsRegistered/any(x:x eq 'email') |
userDisplayName | Filter by user name. Supported filter operators are: eq and startswith() . Supports case insensitive. |
/reports/authenticationMethods/userRegistrationDetails?$filter=userDisplayName eq 'Contoso' |
userPrincipalName | Filter by user principal name. Supported filter operators are: eq and startswith() . Supports case insensitive. |
/reports/authenticationMethods/userRegistrationDetails?$filter=userPrincipalName eq 'Contoso' |
Request headers
Name | Description |
---|---|
Authorization | Bearer {token}. Required. Learn more about authentication and authorization. |
Request body
Don't supply a request body for this method.
Response
If successful, this method returns a 200 OK
response code and a collection of userRegistrationDetails objects in the response body.
Examples
Request
The following example shows a request.
GET https://graph.microsoft.com/v1.0/reports/authenticationMethods/userRegistrationDetails
Response
The following example shows the response.
Note: The response object shown here might be shortened for readability.
HTTP/1.1 200 OK
Content-Type: application/json
{
"@odata.context": "https://graph.microsoft.com/v1.0/$metadata#reports/authenticationMethods/userRegistrationDetails",
"value": [
{
"id": "86462606-fde0-4fc4-9e0c-a20eb73e54c6",
"userPrincipalName": "AlexW@Contoso.com",
"userDisplayName": "Alex Wilber",
"isAdmin": false,
"isSsprRegistered": false,
"isSsprEnabled": false,
"isSsprCapable": false,
"isMfaRegistered": true,
"isMfaCapable": true,
"isPasswordlessCapable": false,
"lastUpdatedDateTime": "2023-03-13T19:15:41.6195833Z",
"methodsRegistered": [
"microsoftAuthenticatorPush",
"softwareOneTimePasscode"
],
"isSystemPreferredAuthenticationMethodEnabled": true,
"systemPreferredAuthenticationMethods": [
"push"
],
"userPreferredMethodForSecondaryAuthentication": "push",
"userType": "member"
},
{
"id": "c6ad1942-4afa-47f8-8d48-afb5d8d69d2f",
"userPrincipalName": "AllanD@Contoso.com",
"userDisplayName": "Allan Deyoung",
"isAdmin": false,
"isSsprRegistered": false,
"isSsprEnabled": false,
"isSsprCapable": false,
"isMfaRegistered": false,
"isMfaCapable": false,
"isPasswordlessCapable": false,
"lastUpdatedDateTime": "2023-03-13T19:15:41.6195833Z",
"methodsRegistered": [],
"isSystemPreferredAuthenticationMethodEnabled": true,
"systemPreferredAuthenticationMethods": [],
"userPreferredMethodForSecondaryAuthentication": "",
"userType": "guest"
},
{
"id": "c8096958-797c-44fa-8fde-a6fb62567cf0",
"userPrincipalName": "BiancaP@Contoso.com",
"userDisplayName": "Bianca Pisani",
"isAdmin": false,
"isSsprRegistered": true,
"isSsprEnabled": false,
"isSsprCapable": false,
"isMfaRegistered": true,
"isMfaCapable": true,
"isPasswordlessCapable": false,
"lastUpdatedDateTime": "2023-03-13T19:15:41.6195833Z",
"methodsRegistered": [
"mobilePhone",
"microsoftAuthenticatorPush",
"softwareOneTimePasscode"
],
"isSystemPreferredAuthenticationMethodEnabled": true,
"systemPreferredAuthenticationMethods": [
"push"
],
"userPreferredMethodForSecondaryAuthentication": "voiceMobile",
"userType": "member"
}
]
}
Feedback
https://aka.ms/ContentUserFeedback.
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see:Submit and view feedback for