Merge pull request #28629 from microsoftgraph/main

Merge to publish

Author: Danipocket

api-reference/beta/api/channel-list-messages.md

@@ -49,7 +49,7 @@ This method supports the following [OData query parameters](/graph/query-paramet
 | Name      | Description          |
 |:----------|:---------------------|
 | [$top](/graph/query-parameters#top-parameter)| Apply `$top` to specify the number of channel messages returned per page in the response. The default page size is 20 messages. You can extend up to 50 channel messages per page. |
-| [$expand](/graph/query-parameters#expand)  | Apply `$expand` to get the properties of channel messages that are replies. By default, a response can include up to 1,000 replies. For an operation that expands channel messages with more than 1,000 replies, use the request URL returned in `replies@odata.nextLink` to get the next page of replies. |
+| [$expand](/graph/query-parameters#expand)  | Apply `$expand` to get the properties of channel messages that are replies. By default, a response can include up to 200 replies. For an operation that expands channel messages with more than 200 replies, use the request URL returned in `replies@odata.nextLink` to get the next page of replies. |
 
 The other [OData query parameters](/graph/query-parameters) aren't currently supported.
 

api-reference/beta/api/security-identitycontainer-list-sensorcandidates.md

@@ -118,7 +118,8 @@ Content-Type: application/json
       "computerDnsName": "win-11.def.defensor.local",
       "senseClientVersion": "10.8780.27711.1000",
       "lastSeenDateTime": "2024-10-29T19:55:10.9452778Z",
-      "domainName": "def.defensor.local"
+      "domainName": "def.defensor.local",
+      "sensorTypes": ["domainController", "adfs"]
     }
   ]
 }

api-reference/beta/resources/enums-security.md

@@ -1191,6 +1191,16 @@ Namespace: microsoft.graph.security
 |jFrogArtifactory|
 |unknownFutureValue|
 
+### deviceType values
+
+| Member                     |
+| :--------------------------|
+| domainController |
+| adfs |
+| adcs |
+| entraConnect |
+| unknownFutureValue |
+
 <!--
 {
   "type": "#page.annotation",

api-reference/beta/resources/mail-api-overview.md

@@ -39,6 +39,8 @@ For example, you can get messages in the Outlook **Sent Items** folder of the si
 GET /me/mailFolders('SentItems')/messages?$select=sender,subject
 ```
 
+When a message is updated while open in an Outlook client, the client does not refresh the message. Users must reopen the message to view the changes.
+
 ## Common use cases
 
 The **message** resource exposes properties such as **categories**, **conversationId**, **flag**, and **importance** that correspond to features

api-reference/beta/resources/mailbox-import-export-api-overview.md

@@ -17,7 +17,7 @@ The mailbox import and export APIs in Microsoft Graph allow your application to
 These APIs support access to data in users' primary mailboxes and shared mailboxes on Exchange Online. Items can be imported to the same mailbox or a different one.
 
 > [!Important]
-> The mailbox import and export APIs in Microsoft Graph are not designed for mailbox backup and restore. For mailbox backup and restore in Microsoft 365, see [Microsoft 365 Backup](/graph/backup-storage-concept-overview).
+> The mailbox import and export APIs in Microsoft Graph are not designed for mailbox backup and restore. For mailbox backup and restore in Microsoft 365, see [Microsoft 365 Backup](/microsoft-365/backup/backup-overview) or the [Microsoft Graph Backup Storage overview](/graph/backup-storage-concept-overview).
 
 ## How to use the mailbox import and export APIs
 
@@ -49,4 +49,4 @@ Use the mailbox import and export APIs in Microsoft Graph to import and export c
 
 ## Related content
 
-[Import an Exchange mailbox item using the mailbox import and export APIs](/graph/import-exchange-mailbox-item)
+- [Import an Exchange mailbox item using the mailbox import and export APIs](/graph/import-exchange-mailbox-item)

api-reference/beta/resources/security-sensorcandidate.md

@@ -25,13 +25,15 @@ Inherits from [microsoft.graph.entity](../resources/entity.md).
 |[Activate](../api/security-sensorcandidate-activate.md)| None                                                                                             |Activate Microsoft Defender for Identity sensors.|
 
 ## Properties
-|Property|Type| Description                                                                                                                                                     |
-|:---|:---|:----------------------------------------------------------------------------------------------------------------------------------------------------------------|
-|computerDnsName|String| The DNS name of the computer associated with the sensor.                                                                                                        |
-|domainName|String| The domain name of the sensor.                                                                                                                                  |
-|id|String| The unique identifier for the sensor candidate. Inherited from [microsoft.graph.entity](../resources/entity.md). Inherits from [entity](../resources/entity.md) |
-|lastSeenDateTime|DateTimeOffset| The date and time when the sensor was last seen.                                                                                                                |
-|senseClientVersion|String| The version of the Defender for Identity sensor client.  Supports `$filter` (`eq`).                                                                                                       |
+|Property| Type                                                                | Description                                                                                                                                                     |
+|:---|:--------------------------------------------------------------------|:----------------------------------------------------------------------------------------------------------------------------------------------------------------|
+|computerDnsName| String                                                              | The DNS name of the computer associated with the sensor.                                                                                                        |
+|domainName| String                                                              | The domain name of the sensor.                                                                                                                                  |
+|id| String                                                              | The unique identifier for the sensor candidate. Inherited from [microsoft.graph.entity](../resources/entity.md). Inherits from [entity](../resources/entity.md) |
+|lastSeenDateTime| DateTimeOffset                                                      | The date and time when the sensor was last seen.                                                                                                                |
+|senseClientVersion| String                                                              | The version of the Defender for Identity sensor client.  Supports `$filter` (`eq`).                                                                             |
+|sensorTypes| microsoft.graph.security.deviceType | The list of device type of the sensor. The possible values are: `domainController`, `adfs`,, `adcs`, `entraConnect` `unknownFutureValue`. This flagged enumeration allows multiple members to be returned simultaneously.                       |
+
 
 ## Relationships
 None.
@@ -53,6 +55,7 @@ The following JSON representation shows the resource type.
   "computerDnsName": "String",
   "senseClientVersion": "String",
   "lastSeenDateTime": "String (timestamp)",
-  "domainName": "String"
+  "domainName": "String",
+  "sensorTypes": "String"
 }
 ```

api-reference/v1.0/api/channel-list-messages.md

@@ -46,7 +46,7 @@ This method supports the following [OData query parameters](/graph/query-paramet
 | Name      | Description          |
 |:----------|:---------------------|
 | [$top](/graph/query-parameters#top-parameter)| Apply `$top` to specify the number of channel messages returned per page in the response. The default page size is 20 messages. You can extend up to 50 channel messages per page. |
-| [$expand](/graph/query-parameters#expand)  | Apply `$expand` to get the properties of channel messages that are replies. By default, a response can include up to 1,000 replies. For an operation that expands channel messages with more than 1,000 replies, use the request URL returned in `replies@odata.nextLink` to get the next page of replies. |
+| [$expand](/graph/query-parameters#expand)  | Apply `$expand` to get the properties of channel messages that are replies. By default, a response can include up to 200 replies. For an operation that expands channel messages with more than 200 replies, use the request URL returned in `replies@odata.nextLink` to get the next page of replies. |
 
 The other [OData query parameters](/graph/query-parameters) aren't currently supported.
 

api-reference/v1.0/api/security-autoauditingconfiguration-get.md

@@ -0,0 +1,95 @@
+---
+title: "Get autoAuditingConfiguration"
+description: "Read the properties and relationships of microsoft.graph.security.autoAuditingConfiguration object."
+author: "SamuelBenichou"
+ms.date: 03/26/2026
+ms.localizationpriority: medium
+ms.subservice: "security"
+doc_type: apiPageType
+---
+
+# Get autoAuditingConfiguration
+
+Namespace: microsoft.graph.security
+
+
+Get the properties and relationships of [microsoft.graph.security.autoAuditingConfiguration](../resources/security-autoauditingconfiguration.md) object.
+
+## Permissions
+
+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).
+
+<!-- {
+  "blockType": "permissions",
+  "name": "security-autoauditingconfiguration-get-permissions"
+}
+-->
+[!INCLUDE [permissions-table](../includes/permissions/security-autoauditingconfiguration-get-permissions.md)]
+
+[!INCLUDE [rbac-mdi-apis](../includes/rbac-for-apis/rbac-mdi-apis.md)]
+
+## HTTP request
+
+<!-- {
+  "blockType": "ignored"
+}
+-->
+``` http
+GET /security/identities/settings/autoAuditingConfiguration
+```
+
+## Optional query parameters
+
+Not supported.
+
+## Request headers
+
+|Name|Description|
+|:---|:---|
+|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|
+
+## Request body
+
+Don't supply a request body for this method.
+
+## Response
+
+If successful, this method returns a `200 OK` response code and a [microsoft.graph.security.autoAuditingConfiguration](../resources/security-autoauditingconfiguration.md) object in the response body.
+
+## Examples
+
+### Request
+
+The following example shows a request.
+<!-- {
+  "blockType": "request",
+  "name": "get_autoauditingconfiguration"
+}
+-->
+``` http
+GET https://graph.microsoft.com/v1.0/security/identities/settings/autoAuditingConfiguration
+```
+
+
+### Response
+
+The following example shows the response.
+>**Note:** The response object shown here might be shortened for readability.
+<!-- {
+  "blockType": "response",
+  "truncated": true,
+  "@odata.type": "microsoft.graph.security.autoAuditingConfiguration"
+}
+-->
+``` http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+  "value": {
+    "@odata.type": "#microsoft.graph.security.autoAuditingConfiguration",
+    "isAutomatic": true
+  }
+}
+```
+

api-reference/v1.0/api/security-autoauditingconfiguration-update.md

@@ -0,0 +1,92 @@
+---
+title: "Update autoAuditingConfiguration"
+description: "Update the properties of a autoAuditingConfiguration object."
+author: "SamuelBenichou"
+ms.date: 03/26/2026
+ms.localizationpriority: medium
+ms.subservice: "security"
+doc_type: apiPageType
+---
+
+# Update autoAuditingConfiguration
+
+Namespace: microsoft.graph.security
+
+Update the properties of an [autoAuditingConfiguration](../resources/security-autoauditingconfiguration.md) object.
+
+## Permissions
+
+Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference).
+
+<!-- {
+  "blockType": "permissions",
+  "name": "security-autoauditingconfiguration-update-permissions"
+}
+-->
+[!INCLUDE [permissions-table](../includes/permissions/security-autoauditingconfiguration-update-permissions.md)]
+
+[!INCLUDE [rbac-mdi-apis](../includes/rbac-for-apis/rbac-mdi-apis.md)]
+
+## HTTP request
+
+<!-- {
+  "blockType": "ignored"
+}
+-->
+``` http
+PATCH /security/identities/settings/autoAuditingConfiguration
+```
+
+## Request headers
+
+|Name|Description|
+|:---|:---|
+|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).|
+|Content-Type|application/json. Required.|
+
+## Request body
+
+
+|Property|Type|Description|
+|:---|:---|:---|
+|isAutomatic|Boolean| Required.|
+
+
+
+## Response
+
+If successful, this method returns a `200 OK` response code.
+
+## Examples
+
+### Request
+
+The following example shows a request.
+<!-- {
+  "blockType": "request",
+  "name": "update_autoauditingconfiguration"
+}
+-->
+``` http
+PATCH https://graph.microsoft.com/v1.0/security/identities/settings/autoAuditingConfiguration
+Content-Type: application/json
+
+{
+  "@odata.type": "#microsoft.graph.security.autoAuditingConfiguration",
+  "isAutomatic": true
+}
+```
+
+
+### Response
+
+The following example shows the response.
+>**Note:** The response object shown here might be shortened for readability.
+<!-- {
+  "blockType": "response",
+  "truncated": true
+}
+-->
+``` http
+HTTP/1.1 200 OK
+```

api-reference/v1.0/api/security-ediscoverycustodian-post-usersources.md

@@ -44,7 +44,7 @@ POST /security/cases/ediscoveryCases/{ediscoveryCaseId}/custodians/{custodianId}
 ## Request body
 In the request body, supply a JSON representation of the [userSource](../resources/security-usersource.md) object.
 
-You can specify the following properties when you create a **userSource**.
+You can specify the following properties when you create a **userSource**. For more information, see [Data sources in eDiscovery](/purview/edisc-data-sources#other-considerations).
 
 |Property|Type|Description|
 |:---|:---|:---|