secureScoreControlProfile resource type

Important

APIs under the /beta version in Microsoft Graph are subject to change. Use of these APIs in production applications is not supported.

Represents a tenant's secure score per control data. By default, it returns all controls for a tenant and can explicitly pull individual controls.

Methods

Method Return Type Description
List secureScoreControlProfiles secureScoreControlProfile collection Get a collection of secureScoreControlProfile objects.

Properties

Name Type Description
azureTenantId String GUID string for tenant ID.
controlName String Name of the control.
title String Title of the control.
complianceInformation complianceInformation collection The collection of compliance information associated with secure score control
controlCategory String Control action category (Account, Data, Device, Apps, Infrastructure).
actionType String Control action type (Config, Review, Behavior).
service String Service that owns the control (Exchange, Sharepoint, Azure AD).
maxScore String Current obtained max score on specified date.
tier String Control tier (Core, Defense in Depth, Advanced.)
userImpact String User impact of implementing control (low, moderate, high).
implementationCost String Resource cost of implemmentating control (low, moderate, high).
rank Int32 Microsoft's stack ranking of control.
threats String Collection List of threats the control mitigates (accountBreach,dataDeletion,dataExfiltration,dataSpillage,elevationOfPrivilege,maliciousInsider,passwordCracking,phishingOrWhaling,spoofing).
deprecated Boolean Flag to indicate if a control is depreciated.
remediation String Description of what the control will help remediate.
remediationImpact String Description of the impact on users of the remediation.
actionUrl String URL to where the control can be actioned.
controlStateUpdates secureScoreControlStateUpdate collection Flag to indicate where the tenant has marked a control (ignore, thirdParty, reviewed) (supports update).
vendorInformation securityVendorInformation

Relationships

None.

JSON representation

The following is a JSON representation of the resource.

{
  "title": "String",
  "azureTenantId": "String (identifier)",
  "maxScore": 1024.13,
  "actionType": "String",
  "service": "String",
  "tier": "String",
  "userImpact": "string",
  "implementationCost ": "String",
  "rank ": 100,
  "threats": ["string"],
  "deprecated ": false,
  "remediation": "String",
  "remediationImpact ": "String",
  "actionUrl": "String",
  "controlStateUpdates": [{"@odata.type": "microsoft.graph.secureScoreControlStateUpdate"}],
  "vendorInformation": {"@odata.type": "microsoft.graph.securityVendorInformation"},
  "complianceInformation": [{"@odata.type": "microsoft.graph.complianceInformation"}],
  "controlCategory": "string",
  "lastModifiedDateTime": "String (timestamp)"
}