I want to fetch regulatory compliance data from microsoft defender for cloud via API in postman, is there any way to do this ?

Milan Pandya 0 Reputation points
2024-11-06T09:28:30.1666667+00:00

I see this api on microsoft learn platform but I am not able to replicate the same in postman, I am not sure what type of permission i need to give my application in order for me to fetch regulatory compliance data just same as shown below but via postman.

https://learn.microsoft.com/en-us/rest/api/defenderforcloud/regulatory-compliance-standards/list?view=rest-defenderforcloud-2019-01-01-preview&tabs=HTTP#code-try-0

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,437 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. James Hamil 26,036 Reputation points Microsoft Employee
    2024-11-06T21:56:59.75+00:00

    Hi @Milan Pandya , what are you not able to replicate? Are you receiving any errors or warnings?

    The following steps should work for you. Please let me know if they don't:

    1. Obtain the API URL and generate an API token from your Microsoft Defender for Cloud portal. You can find the API URL in the Defender for Cloud settings under the "Cloud Apps" section.
    2. Configure Postman:
      • Open Postman and create a new request.
      • Set the request type to GET.
      • Enter the API URL in the request URL field. For example, https://management.azure.com/subscriptions/{subscriptionId}/providers/Microsoft.Security/regulatoryComplianceStandards?api-version=2019-01-01-preview.
    3. In the Headers tab, add the following headers:
      • Authorization: Bearer <your_token_key>
      • Content-Type: application/json
    4. Assign the appropriate roles to your application: "To access all compliance data in your tenant, you need to have at least a Reader level of permissions on the applicable scope of your tenant, or all relevant subscriptions. The minimum set of roles for accessing the dashboard and managing standards is Resource Policy Contributor and Security Admin."
    5. Send the Request.

    Please let me know if you have any questions and I can help you further.

    If this answer helps you please mark "Accept Answer" so other users can reference it.

    Thank you,

    James


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.