authorizationSystem resource type
Namespace: microsoft.graph
Important
APIs under the /beta version in Microsoft Graph are subject to change. Use of these APIs in production applications is not supported. To determine whether an API is available in v1.0, use the Version selector.
Represents a Microsoft Azure susbcription, Amazon Web Services (AWS) account, or Google Cloud Platform (GCP) project onboarded onto Microsoft Entra Permissions Management, Microsoft's cloud infrastructure entitlement management (CIEM) solution. Permissions Management discovers, remediates, and monitors the permissions and actions of identities in these platforms.
This object is read-only and is populated when you successfully onboard the platform onto Permissions Management.
The following resource types are derived from this resource:
- awsAuthorizationSystem resource type
- azureAuthorizationSystem resource type
- gcpAuthorizationSystem resource type
Inherits from entity.
Methods
| Method | Return type | Description |
|---|---|---|
| List | authorizationSystem collection | Get a list of the authorizationSystem objects and their properties. |
| Get | authorizationSystem | Read the properties and relationships of an authorizationSystem object. |
Properties
| Property | Type | Description |
|---|---|---|
| authorizationSystemId | String | ID of the authorization system retrieved from the customer cloud environment. Supports $filter(eq, contains) and $orderBy. |
| authorizationSystemName | String | Name of the authorization system detected after onboarding. Supports $filter(eq,contains) and $orderBy. |
| authorizationSystemType | String | The type of authorization system. Can be gcp, azure, or aws. Supports $filter(eq). |
| id | String | Unique identifier for the authorization system within Microsoft Entra Permissions Management. Inherited from entity. |
Relationships
| Relationship | Type | Description |
|---|---|---|
| dataCollectionInfo | dataCollectionInfo | Defines how and whether Permissions Management collects data from the onboarded authorization system. Supports $filter (eq) as follows: $filter=dataCollectionInfo/entitlements/permissionsModificationCapability and $filter=dataCollectionInfo/entitlements/status. |
JSON representation
The following JSON representation shows the resource type.
{
"@odata.type": "#microsoft.graph.authorizationSystem",
"id": "String (identifier)",
"authorizationSystemId": "String",
"authorizationSystemName": "String",
"authorizationSystemType": "String"
}