starred/CIPP
1
0
Fork 0
mirror of https://github.com/KelvinTegelaar/CIPP.git synced 2026-04-25 16:26:09 +03:00
Code Issues 20 Projects Releases 5 Packages Wiki Activity

[GH-ISSUE #1084] Missing application roles for "List Incidents" #577

New issue
Closed
opened 2026-03-02 12:43:25 +03:00 by kerem · 2 comments
kerem commented 2026-03-02 12:43:25 +03:00
Owner
Copy link

Originally created by @Arne-RFA on GitHub (Aug 25, 2022).
Original GitHub issue: https://github.com/KelvinTegelaar/CIPP/issues/1084

Description

Clean deployment of 2.11.2
SECURITY & COMPLIANCE > List Incidents
"popup" error shown
Missing application roles. API required roles: SecurityIncident.Read.All,SecurityIncident.ReadWrite.All, application roles: Group.ReadWrite.All,Group.Read.All,Policy.ReadWrite

image

Run Permissions check shows
Your access token contains the MFA claim.
Your Secure Application Model has all required permissions

Checked API permissions and all are set apart from "Policy.ReadWrite", which does not exist as a Microsoft Graph API Permission

image

No existing issues found (open or closed) with "Policy.ReadWrite" as search text.

Environment data

Azure, Version Frontend 2.11.2, version backend 2.0.3
SAM installed via wizard, with Policy.ReadWrite.ApplicationConfiguration, SecurityIncident.Read.All, and 
SecurityIncident.ReadWrite.All permissions added manually as per https://github.com/KelvinTegelaar/CIPP/issues/1031

Running in "write mode", issue seen when following instructions "Visit each page you want to save the contents of, e.g. Standards, Intune Templates, Applications, Alerts, Visiting the page automatically migrates the data to Azure Tables." from https://github.com/KelvinTegelaar/CIPP/releases/tag/v2.1.11.0
Originally created by @Arne-RFA on GitHub (Aug 25, 2022). Original GitHub issue: https://github.com/KelvinTegelaar/CIPP/issues/1084 ### Description Clean deployment of 2.11.2 SECURITY & COMPLIANCE > List Incidents "popup" error shown Missing application roles. API required roles: SecurityIncident.Read.All,SecurityIncident.ReadWrite.All, application roles: Group.ReadWrite.All,Group.Read.All,Policy.ReadWrite ![image](https://user-images.githubusercontent.com/74773674/186651422-9756d266-0cd9-44a7-83d8-68007c2b9460.png) Run Permissions check shows Your access token contains the MFA claim. Your Secure Application Model has all required permissions Checked API permissions and all are set apart from "Policy.ReadWrite", which does not exist as a Microsoft Graph API Permission ![image](https://user-images.githubusercontent.com/74773674/186652442-d318da85-6054-4dc1-9649-d879b73e2d5c.png) No existing issues found (open or closed) with "Policy.ReadWrite" as search text. ### Environment data ```PowerShell Azure, Version Frontend 2.11.2, version backend 2.0.3 SAM installed via wizard, with Policy.ReadWrite.ApplicationConfiguration, SecurityIncident.Read.All, and SecurityIncident.ReadWrite.All permissions added manually as per https://github.com/KelvinTegelaar/CIPP/issues/1031 Running in "write mode", issue seen when following instructions "Visit each page you want to save the contents of, e.g. Standards, Intune Templates, Applications, Alerts, Visiting the page automatically migrates the data to Azure Tables." from https://github.com/KelvinTegelaar/CIPP/releases/tag/v2.1.11.0 ```
kerem 2026-03-02 12:43:25 +03:00
kerem commented 2026-03-02 12:43:26 +03:00
Author
Owner
Copy link

@github-actions[bot] commented on GitHub (Aug 25, 2022):

Thank you for creating a bug. Please make sure your bug is indeed a unique case by checking current and past issues, and reading the complete documentation at https://kelvintegelaar.github.io/CIPP
If your bug is a known documentation issue, it will be closed without notice by a contributor. To confirm that this is not a bug found in the documentation, please copy and paste the following comment: "I confirm that I have checked the documentation thoroughly and believe this to be an actual bug.".

Without confirming, your report will be closed in 24 hours. If you'd like this bug to be assigned to you, please comment "I would like to work on this please!".

<!-- gh-comment-id:1227146501 --> @github-actions[bot] commented on GitHub (Aug 25, 2022): Thank you for creating a bug. Please make sure your bug is indeed a unique case by checking current and past issues, and reading the complete documentation at https://kelvintegelaar.github.io/CIPP If your bug is a known documentation issue, it will be closed without notice by a contributor. To confirm that this is not a bug found in the documentation, please copy and paste the following comment: "I confirm that I have checked the documentation thoroughly and believe this to be an actual bug.". Without confirming, your report will be closed in 24 hours. If you'd like this bug to be assigned to you, please comment "I would like to work on this please!".
kerem commented 2026-03-02 12:43:26 +03:00
Author
Owner
Copy link

@Arne-RFA commented on GitHub (Aug 25, 2022):

I confirm that I have checked the documentation thoroughly and believe this to be an actual bug.

<!-- gh-comment-id:1227149360 --> @Arne-RFA commented on GitHub (Aug 25, 2022): I confirm that I have checked the documentation thoroughly and believe this to be an actual bug.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
docs
dev
dependabot/npm_and_yarn/dev/uiw/react-json-view-2.0.0-alpha.42
dependabot/npm_and_yarn/dev/tanstack/react-query-persist-client-5.96.2
dependabot/npm_and_yarn/dev/mui-tiptap-1.30.0
dependabot/npm_and_yarn/dev/tanstack/react-query-devtools-5.96.2
dependabot/npm_and_yarn/dev/recharts-3.8.1
dependabot/github_actions/dev/actions/setup-node-6.4.0
copilot/add-alert-for-report-only-ca
release/beta
release/nightly
docs-maintenance
v10.4.0
v10.3.0
v10.2.0
v10.1.0
v10.0.0
v8.8.0
v8.7.0
v8.6.0
v8.5.0
v8.4.0
v8.3.0
v8.2.0
v8.1.0
v8.0.0
v7.5.0
v7.4.0
v7.3.0
v7.2.0
v7.1.0
v7.0.1
v6.4.0
v6.3.0
v6.2.0
v6.1.0
v6.0.0
v5.9.0
v5.8.5
v5.8.0
v5.7.0
v5.6.0
v5.5.0
v5.4.0
v5.3.0
v5.2.0
v5.1.0
v5.0.0
v4.9.0
v4.8.0
v4.7.0
v.4.6.0
v4.5.0
v4.4.0
v4.3.0
v4.2.0
v4.1.0
v4.0.0
v3.8.0
v3.7.0
v3.6.0
v3.5.0
v3.4.0
v3.3.0
v3.2.0
v3.1.0
v3.0.0
v2.20.0
v2.19.0
v2.18.0
v2.17.0
v2.16.0
v2.15.0
v2.13.0
v2.12.0
v2.11.2
v2.1.11.0
v.2.10.0
v2.9.0
v2.8.0
v2.7.0
v2.6.0
v2.5.5
v2.5.0
v2.4.0
v.2.3.0
v2.2.0
v2.1.2
v2.1.1
v2.1.0
v2.0.1
2.0.0
v1.5.1
v1.5.0
v1.4.3
v1.4.2
v1.4.0
v1.3.0
v1.2.1
v1.2.0
1.1.0
release
Labels
Clear labels   
API

   
Feature

   
NotABug

   
NotABug

   
Planned

   
Sponsor Priority

   
Sponsor Priority

   
bug

   
documentation

   
duplicate

   
enhancement

   
needs more info

   
no-activity

   
no-priority

   
not-assigned

   
pull-request

Mirrored from GitHub Pull Request

  
react-conversion

   
react-conversion

   
roadmap

   
security

   
stale

   
unconfirmed-by-user

   
unconfirmed-by-user

   
wontfix
No labels
API
Feature
NotABug
NotABug
Planned
Sponsor Priority
Sponsor Priority
bug
documentation
duplicate
enhancement
needs more info
no-activity
no-priority
not-assigned
pull-request
react-conversion
react-conversion
roadmap
security
stale
unconfirmed-by-user
unconfirmed-by-user
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/CIPP#577
No description provided.