Merge pull request #26575 from microsoftgraph/main

Merge to publish.

Author: Danielabom

api-reference/beta/api/healthmonitoring-alert-get.md

@@ -48,6 +48,7 @@ When no `$expand` query parameter is added, this API doesn't return `resourceSam
 |Name|Description|
 |:---|:---|
 |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|
+|Prefer: include-unknown-enum-members | Enables evolvable enum values beyond the sentinel value. For more information, see [Best practices for working with Microsoft Graph](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations). Optional. |
 
 ## Request body
 

api-reference/beta/api/healthmonitoring-alert-update.md

@@ -43,6 +43,7 @@ PATCH /reports/healthMonitoring/alerts/{alertId}
 |:---|:---|
 |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|
 |Content-Type|application/json. Required.|
+|Prefer: include-unknown-enum-members | Enables evolvable enum values beyond the sentinel value. For more information, see [Best practices for working with Microsoft Graph](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations). Optional. |
 
 ## Request body
 

api-reference/beta/api/healthmonitoring-healthmonitoringroot-list-alerts.md

@@ -50,6 +50,7 @@ When no `$expand` query parameter is added, this API doesn't return `resourceSam
 |Name|Description|
 |:---|:---|
 |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|
+|Prefer: include-unknown-enum-members | Enables evolvable enum values beyond the sentinel value. For more information, see [Best practices for working with Microsoft Graph](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations). Optional. |
 
 ## Request body
 

api-reference/beta/api/teamsadministration-teamsadminroot-list-userconfigurations.md

@@ -0,0 +1,130 @@
+---
+title: "List userConfigurations"
+description: "Get user configurations for all Teams users who belong to a tenant."
+author: "praspatil05"
+ms.date: 03/19/2025
+ms.localizationpriority: medium
+ms.subservice: "teams"
+doc_type: apiPageType
+---
+
+# List userConfigurations
+
+Namespace: microsoft.graph.teamsAdministration
+
+[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]
+
+Get [user configurations](../resources/teamsadministration-teamsuserconfiguration.md) for all Teams users who belong to a tenant.
+
+## Permissions
+
+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).
+
+<!-- {
+  "blockType": "permissions",
+  "name": "teamsadministration-teamsadminroot-list-userconfigurations-permissions"
+}
+-->
+[!INCLUDE [permissions-table](../includes/permissions/teamsadministration-teamsadminroot-list-userconfigurations-permissions.md)]
+
+## HTTP request
+
+<!-- {
+  "blockType": "ignored"
+}
+-->
+``` http
+GET /admin/teams/userConfigurations
+```
+
+## Optional query parameters
+
+This method supports the `$select`, `$filter`, `$top`, `$expand`, and `$orderBy` OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters).
+
+## Request headers
+
+|Name|Description|
+|:---|:---|
+|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|
+
+## Request body
+
+Don't supply a request body for this method.
+
+## Response
+
+If successful, this method returns a `200 OK` response code and a collection of [microsoft.graph.teamsAdministration.teamsUserConfiguration](../resources/teamsadministration-teamsuserconfiguration.md) objects in the response body.
+
+## Examples
+
+### Request
+
+The following example shows a request.
+<!-- {
+  "blockType": "request",
+  "name": "list_teamsuserconfiguration"
+}
+-->
+``` http
+GET https://graph.microsoft.com/beta/admin/teams/userConfigurations
+```
+
+### Response
+
+The following example shows the response.
+>**Note:** The response object shown here might be shortened for readability.
+<!-- {
+  "blockType": "response",
+  "truncated": true,
+  "@odata.type": "Collection(microsoft.graph.teamsAdministration.teamsUserConfiguration)"
+}
+-->
+``` http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+  "value": [
+    {
+      "@odata.context": "https://graph.microsoft.com/beta/$metadata#admin/teams/userConfigurations",
+      "id": "5c802b19-3600-83f1-1767-7b9edc7f38ab",
+      "userPrincipalName": "AdeleV@contoso.com",
+      "tenantId": "87d349ed-44d7-43e1-9a83-5f2406dee5bd",
+      "effectivePolicyAssignments": [
+        {
+          "policyType": "TeamsCallingPolicy",
+          "policyAssignment": {
+            "displayName": "AllOn",
+            "assignmentType": "group",
+            "policyId": "f7593e81-772a-4455-88a3-fc9e5ebc1e4a",
+            "groupId": "75ae6229-35fe-4b01-ae7f-7c50439d239c"
+          }
+        },
+        {
+          "policyType": "TeamsMeetingPolicy",
+          "policyAssignment": {
+            "displayName": "CustomPolicy",
+            "assignmentType": "direct",
+            "policyId": "J93PmFHwFcLZhWfYcBlv9pn-hG-kUWkcxmkDvpwgacw"
+          }
+        }
+      ],
+      "telephoneNumbers": [
+        {
+          "telephoneNumber": "+13235533696",
+          "assignmentCategory": "primary"
+        }
+      ],
+      "isEnterpriseVoiceEnabled": false,
+      "featureTypes": [
+        "Teams",
+        "CallingPlan"
+      ],
+      "accountType": "user",
+      "createdDateTime": "2025-01-07T09:08:50.9115993Z",
+      "modifiedDateTime": "2025-01-07T09:08:50.9115993Z"
+    }
+  ]
+}
+```
+

api-reference/beta/api/teamsadministration-teamsuserconfiguration-get.md

@@ -0,0 +1,128 @@
+---
+title: "Get teamsUserConfiguration"
+description: "Read the Teams user configurations for a specific user using their ID (the user's identifier)."
+author: "praspatil05"
+ms.date: 03/19/2025
+ms.localizationpriority: medium
+ms.subservice: "teams"
+doc_type: apiPageType
+---
+
+# Get teamsUserConfiguration
+
+Namespace: microsoft.graph.teamsAdministration
+
+[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]
+
+Read the Teams user configurations for a specific user using their ID (the user's identifier).
+
+## Permissions
+
+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).
+
+<!-- {
+  "blockType": "permissions",
+  "name": "teamsadministration-teamsuserconfiguration-get-permissions"
+}
+-->
+[!INCLUDE [permissions-table](../includes/permissions/teamsadministration-teamsuserconfiguration-get-permissions.md)]
+
+## HTTP request
+
+<!-- {
+  "blockType": "ignored"
+}
+-->
+``` http
+GET /admin/teams/userConfigurations/{teamsUserConfigurationId}
+```
+
+## Optional query parameters
+
+This method supports the `$select` and `$expand` OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters).
+
+## Request headers
+
+|Name|Description|
+|:---|:---|
+|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|
+
+## Request body
+
+Don't supply a request body for this method.
+
+## Response
+
+If successful, this method returns a `200 OK` response code and a [microsoft.graph.teamsAdministration.teamsUserConfiguration](../resources/teamsadministration-teamsuserconfiguration.md) object in the response body.
+
+## Examples
+
+### Request
+
+The following example shows a request.
+<!-- {
+  "blockType": "request",
+  "name": "get_teamsuserconfiguration",
+  "sampleKeys": ["5c802b19-3600-83f1-1767-7b9edc7f38ab"]
+}
+-->
+``` http
+GET https://graph.microsoft.com/beta/admin/teams/userConfigurations/5c802b19-3600-83f1-1767-7b9edc7f38ab
+```
+
+### Response
+
+The following example shows the response.
+>**Note:** The response object shown here might be shortened for readability.
+<!-- {
+  "blockType": "response",
+  "truncated": true,
+  "@odata.type": "microsoft.graph.teamsAdministration.teamsUserConfiguration"
+}
+-->
+``` http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+  "value": {
+      "@odata.context": "https://graph.microsoft.com/beta/$metadata#admin/teams/userConfigurations/$entity",   
+      "id": "5c802b19-3600-83f1-1767-7b9edc7f38ab",
+      "userPrincipalName": "AdeleV@contoso.com",
+      "tenantId": "87d349ed-44d7-43e1-9a83-5f2406dee5bd",
+      "effectivePolicyAssignments": [
+        {
+          "policyType": "TeamsCallingPolicy",
+          "policyAssignment": {
+            "displayName": "AllOn",
+            "assignmentType": "group",
+            "policyId": "f7593e81-772a-4455-88a3-fc9e5ebc1e4a",
+            "groupId": "75ae6229-35fe-4b01-ae7f-7c50439d239c"
+          }
+        },
+        {
+          "policyType": "TeamsMeetingPolicy",
+          "policyAssignment": {
+            "displayName": "CustomPolicy",
+            "assignmentType": "direct",
+            "policyId": "J93PmFHwFcLZhWfYcBlv9pn-hG-kUWkcxmkDvpwgacw"
+          }
+        }
+      ],
+      "telephoneNumbers": [
+        {
+          "telephoneNumber": "+13235533696",
+          "assignmentCategory": "primary"
+        }
+      ],
+      "isEnterpriseVoiceEnabled": false,
+      "featureTypes": [
+        "Teams",
+        "CallingPlan"
+      ],
+      "accountType": "user",
+      "createdDateTime": "2025-01-07T09:08:50.9115993Z",
+      "modifiedDateTime": "2025-01-07T09:08:50.9115993Z"
+  }
+}
+```

api-reference/beta/includes/permissions/teamsadministration-teamsadminroot-list-userconfigurations-permissions.md

@@ -0,0 +1,13 @@
+---
+description: Automatically generated file. DO NOT MODIFY
+ms.topic: include
+ms.localizationpriority: medium
+---
+
+|Permission type|Least privileged permissions|Higher privileged permissions|
+|:---|:---|:---|
+|Delegated (work or school account)|TeamsUserConfiguration.Read.All|Not available.|
+|Delegated (personal Microsoft account)|Not supported.|Not supported.|
+|Application|TeamsUserConfiguration.Read.All|Not available.|
+
+

api-reference/beta/includes/permissions/teamsadministration-teamsuserconfiguration-get-permissions.md

@@ -0,0 +1,13 @@
+---
+description: Automatically generated file. DO NOT MODIFY
+ms.topic: include
+ms.localizationpriority: medium
+---
+
+|Permission type|Least privileged permissions|Higher privileged permissions|
+|:---|:---|:---|
+|Delegated (work or school account)|TeamsUserConfiguration.Read.All|Not available.|
+|Delegated (personal Microsoft account)|Not supported.|Not supported.|
+|Application|TeamsUserConfiguration.Read.All|Not available.|
+
+

api-reference/beta/resources/admin.md

@@ -32,6 +32,7 @@ Represents an entity that acts as a container for administrator functionality.
 | reportSettings |[microsoft.graph.adminReportSettings](../resources/adminreportsettings.md)|A container for administrative resources to manage reports.|
 | serviceAnnouncement | [serviceAnnouncement](serviceannouncement.md) | A container for service communications resources. Read-only. |
 | sharepointSettings | [sharepointSettings](../resources/sharepointSettings.md) | A container for administrative resources to manage tenant-level settings for SharePoint and OneDrive. |
+| teams|[microsoft.graph.teamsAdministration.teamsAdminRoot](../resources/teamsadministration-teamsadminroot.md)|Represents a collection of user configurations.|
 | windows |[microsoft.graph.adminWindows](../resources/adminwindows.md)|A container for all Windows administrator functionalities. Read-only.|
 
 ## JSON representation

api-reference/beta/resources/conditionalaccessapplications.md

@@ -21,13 +21,13 @@ Represents the applications and user actions included in and excluded from the c
 
 | Property | Type | Description |
 |:-------- |:---- |:----------- |
-| includeApplications | String collection | Can be one of the following: <li> The list of client IDs (**appId**) the policy applies to, unless explicitly excluded (in **excludeApplications**) <li> `All` <li> `Office365` - For the list of apps included in `Office365`, see [Apps included in Conditional Access Office 365 app suite](/entra/identity/conditional-access/reference-office-365-application-contents) <li> `MicrosoftAdminPortals` - For more information, see [Conditional Access Target resources: Microsoft Admin Portals](/entra/identity/conditional-access/concept-conditional-access-cloud-apps#microsoft-admin-portals) |
-| excludeApplications | String collection | Can be one of the following: <li> The list of client IDs (**appId**) explicitly excluded from the policy.<li> `Office365` - For the list of apps included in `Office365`, see [Apps included in Conditional Access Office 365 app suite](/entra/identity/conditional-access/reference-office-365-application-contents) <li> `MicrosoftAdminPortals` - For more information, see [Conditional Access Target resources: Microsoft Admin Portals](/entra/identity/conditional-access/concept-conditional-access-cloud-apps#microsoft-admin-portals)|
 | applicationFilter | [conditionalAccessFilter](conditionalaccessfilter.md) | Filter that defines the dynamic-application-syntax rule to include/exclude cloud applications. A filter can use custom security attributes to include/exclude applications. |
+| excludeApplications | String collection | Can be one of the following: <li> The list of client IDs (**appId**) explicitly excluded from the policy.<li> `Office365` - For the list of apps included in `Office365`, see [Apps included in Conditional Access Office 365 app suite](/entra/identity/conditional-access/reference-office-365-application-contents) <li> `MicrosoftAdminPortals` - For more information, see [Conditional Access Target resources: Microsoft Admin Portals](/entra/identity/conditional-access/concept-conditional-access-cloud-apps#microsoft-admin-portals)|
+| globalSecureAccess (deprecated)| [conditionalAccessGlobalSecureAccess](conditionalaccessglobalsecureaccess.md) | Represents traffic profile for Global Secure Access. This property is deprecated and will stop returning data on June 1, 2025. Use new Global Secure Access applications instead.|
+| includeApplications | String collection | Can be one of the following: <li> The list of client IDs (**appId**) the policy applies to, unless explicitly excluded (in **excludeApplications**) <li> `All` <li> `Office365` - For the list of apps included in `Office365`, see [Apps included in Conditional Access Office 365 app suite](/entra/identity/conditional-access/reference-office-365-application-contents) <li> `MicrosoftAdminPortals` - For more information, see [Conditional Access Target resources: Microsoft Admin Portals](/entra/identity/conditional-access/concept-conditional-access-cloud-apps#microsoft-admin-portals) |
 | includeUserActions | String collection | User actions to include. Supported values are `urn:user:registersecurityinfo` and `urn:user:registerdevice` |
 | includeAuthenticationContextClassReferences | String collection | Authentication context class references include. Supported values are `c1` through `c25`. |
 | networkAccess (deprecated)| [conditionalAccessNetworkAccess](conditionalaccessnetworkaccess.md) | Represents traffic profile for Global Secure Access. This property is deprecated and will stop returning data on June 1, 2025. Use new Global Secure Access applications instead.|
-| globalSecureAccess (deprecated)| [conditionalAccessGlobalSecureAccess](conditionalaccessglobalsecureaccess.md) | Represents traffic profile for Global Secure Access. This property is deprecated and will stop returning data on June 1, 2025. Use new Global Secure Access applications instead.|
 
 ## Relationships
 
@@ -68,4 +68,3 @@ The following JSON representation shows the resource type.
   "section": "documentation",
   "tocPath": ""
 }-->
-

api-reference/beta/resources/crosstenantaccesspolicyinboundtrust.md

@@ -23,6 +23,7 @@ Defines the Conditional Access claims you want to accept from other Microsoft En
 | isCompliantDeviceAccepted | Boolean | Specifies whether compliant devices from external Microsoft Entra organizations are trusted. |
 | isHybridAzureADJoinedDeviceAccepted | Boolean | Specifies whether Microsoft Entra hybrid joined devices from external Microsoft Entra organizations are trusted. |
 | isMfaAccepted | Boolean | Specifies whether MFA from external Microsoft Entra organizations is trusted.|
+| isCompliantNetworkAccepted | Boolean | Specifies whether compliant network from external Microsoft Entra organizations is trusted.|
 
 ## Relationships
 
@@ -42,6 +43,7 @@ The following JSON representation shows the resource type.
   "@odata.type": "#microsoft.graph.crossTenantAccessPolicyInboundTrust",
   "isMfaAccepted": "Boolean",
   "isCompliantDeviceAccepted": "Boolean",
-  "isHybridAzureADJoinedDeviceAccepted": "Boolean"
+  "isHybridAzureADJoinedDeviceAccepted": "Boolean",
+  "isCompliantNetworkAccepted": "Boolean"
 }
 ```

api-reference/beta/resources/enums-healthmonitoring.md

@@ -33,6 +33,7 @@ Namespace: microsoft.graph.healthMonitoring
 |managedDeviceSignInFailure|
 |compliantDeviceSignInFailure|
 |unknownFutureValue|
+|conditionalAccessBlockedSignIn|
 
 ### category values 
 
@@ -65,6 +66,7 @@ Namespace: microsoft.graph.healthMonitoring
 |mfa|
 |devices|
 |unknownFutureValue|
+|conditionalAccess|
 
 <!--
 {