Skip to main content
News and Announcements icon
Community site session details

Community site session details

Session Id : xHj6nASAg0vVvftOQq6zEw
Power Platform Community / Forums / Power Automate - General Discussion / Flow Connector Permissons
Power Automate - General Discussion
Unanswered

Flow Connector Permissons

Like (0) ShareShare
ReportReport
Posted on 15 Feb 2024 12:05:52 by PandaKid 3

Hello Everyone, <br/> I have created a Flow that uses my permissions to create useraccounts in Entra.

My problem now is that we use PIM-Roles that have to be activated daily to grant adminpermissions such as useraccount creation.

If I am away at vacation or just didnt activate my role the flow will fail due to insufficient permissions.

Now I could create an Account with the needed permissions but this account then becomes the new security risk since it has its permissions permanently active. <br/> Does anyone have a safe method to resolve this problem?

  • PandaKid Profile Picture
    PandaKid 3 on 16 Feb 2024 at 13:43:40
    Re: Flow Connector Permissons

    @SudeepGhatakNZ 

    Thank your for your reply.

    I am currently working on your Idea but i ran into an issue and cant seem to get it to work.

    PandaKid_0-1708090925651.png

    This is my flow and that is the error I get.
    I am not too familiar with REST API Calls

     

    {
      "error": {
        "code"400,
        "message""URI path is not a valid Graph endpoint, path is neither absolute nor relative or resource/object is not supported for this connector. Resources: me,users Objects: messages,mailFolders,events,calendar,calendars,outlook,inferenceClassification. Uri: https://graph.microsoft.com/v1.0/roleManagement/directory/roleAssignmentScheduleRequests",
        "source""flow-apim-europe-002-northeurope-01.azure-apim.net",
        "path""choose[7]\\when[1]",
        "policyId""",
        "clientRequestId""f380ae12-b42e-4233-81c5-5d20cf8b4177"
      }
    }



  • SudeepGhatakNZ Profile Picture
    SudeepGhatakNZ 14,381 Most Valuable Professional on 15 Feb 2024 at 23:25:31
    Re: Flow Connector Permissons

    @PandaKid 

    Good question!

    I think I would include the PIM authorisation in the flow itself.

    This could be achieved using the GRAPH Api. 

    Although I haven't tried that myself, I would start by looking at the following links:

    https://learn.microsoft.com/en-us/graph/api/resources/privilegedidentitymanagementv3-overview

    Assign Microsoft Entra roles in Privileged Identity Management using Microsoft Graph PowerShell | Microsoft Learn

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities
Announcing our 2025 Season 2 Super Users!

Quick Links

Announcing our 2025 Season 2 Super Users!

A new season of Super Users has arrived, and we are so grateful for…

Paul Stork – Community Spotlight

We are honored to recognize Paul Stork as our July 2025 Community…

Congratulations to the June Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Power Automate

#1
Tomac Profile Picture

Tomac 986 Moderator

#2
stampcoin Profile Picture

stampcoin 699 Super User 2025 Season 2

#3
Riyaz_riz11 Profile Picture

Riyaz_riz11 577 Super User 2025 Season 2

Last month Overall leaderboard

Featured topics

How to Ask for Help with Your Power Automate Workflow

Product updates

Microsoft Power Platform Community release plans