awsExternalSystemAccessRoleFinding resource type
Namespace: microsoft.graph
Important
APIs under the /beta version in Microsoft Graph are subject to change. Use of these APIs in production applications is not supported. To determine whether an API is available in v1.0, use the Version selector.
Represents the findings for roles that allow for external system access.
Inherits from finding.
Methods
| Method | Return type | Description |
|---|---|---|
| List | awsExternalSystemAccessRoleFinding collection | Get a list of the awsExternalSystemAccessRoleFinding objects and their properties. |
| Get | awsExternalSystemAccessRoleFinding | Read the properties and relationships of an awsExternalSystemAccessRoleFinding object. |
Properties
| Property | Type | Description |
|---|---|---|
| accessibleSystemIds | String collection | The IDs of the accounts that this role is able to access. |
| createdDateTime | DateTimeOffset | Defines when the finding was created. Inherited from finding. |
| id | String | Unique identifier for the finding. Inherited from entity. |
| permissionsCreepIndex | permissionsCreepIndex | A score for an identity's excessive permissions that is classified into three buckets: 0-33: low, 34-66: medium, 67-100: high. This property and its values are a snapshot as of when the finding was created and might not reflect the current score for the identity. Supports $filter (gt) and $orderby. |
Relationships
| Relationship | Type | Description |
|---|---|---|
| role | awsRole | The role that has access to external accounts. Supports $orderby (for role/displayName) and $filter as follows: $filter=role/authorizationSystem/authorizationSystemId IN ['authorizationSystemIds'] and $filter=role/authorizationSystem/authorizationSystemName eq 'authsystemname'. Autoexpanded by default. |
JSON representation
The following JSON representation shows the resource type.
{
"@odata.type": "#microsoft.graph.awsExternalSystemAccessRoleFinding",
"id": "String (identifier)",
"createdDateTime": "String (timestamp)",
"permissionsCreepIndex": {
"@odata.type": "microsoft.graph.permissionsCreepIndex"
},
"accessibleSystemIds": [
"String"
]
}