Create deviceCompliancePolicyGroupAssignment

Note: Using the Microsoft Graph APIs to configure Intune controls and policies still requires that the Intune service is correctly licensed by the customer.

Create a new deviceCompliancePolicyGroupAssignment object.


One of the following permission scopes is required to execute this API:


HTTP Request

POST /deviceCompliancePolicyGroupAssignment/
POST /deviceManagement/deviceCompliancePolicies/{deviceCompliancePolicyId}/groupAssignments/

Request headers

Header Value
Authorization Bearer <token> Required.
Accept application/json

Request body

In the request body, supply a JSON representation of a deviceCompliancePolicyGroupAssignment object. The following table shows the properties that are required when you create a deviceCompliancePolicyGroupAssignment.

Property Type Description
id String Key of the entity. Inherited from deviceCompliancePolicyAssignment
targetGroupId String The Id of the AAD group we are targeting the device compliance policy to.


If successful, this method returns a 201 Created response code and a deviceCompliancePolicyGroupAssignment object in the response body.



Here is an example of the request.

Content-type: application/json
Content-length: 124

  "@odata.type": "#microsoft.graph.deviceCompliancePolicyGroupAssignment",
  "targetGroupId": "Target Group Id value"


Here is an example of the response. Note: The response object shown here may be truncated for brevity. All of the properties will be returned from an actual call.

HTTP/1.1 201 Created
Content-Type: application/json
Content-Length: 173

  "@odata.type": "#microsoft.graph.deviceCompliancePolicyGroupAssignment",
  "id": "fe44007c-007c-fe44-7c00-44fe7c0044fe",
  "targetGroupId": "Target Group Id value"