identityFinding resource type
Namespace: microsoft.graph
Important
APIs under the /beta version in Microsoft Graph are subject to change. Use of these APIs in production applications is not supported. To determine whether an API is available in v1.0, use the Version selector.
Represents a finding related to an identity such as a user, role, or function in the authorization system.
Inherits from finding.
The following resources inherit from this resource type:
- inactiveawsresourcefinding
- inactiveawsrolefinding
- inactiveazureserviceprincipalfinding
- inactivegcpserviceaccountfinding
- inactiveserverlessfunctionfinding
- inactiveuserfinding
- overprovisionedawsresourcefinding
- overprovisionedawsrolefinding
- overprovisionedazureserviceprincipalfinding
- overprovisionedgcpserviceaccountfinding
- overprovisionedserverlessfunctionfinding
- overprovisioneduserfinding
- superawsresourcefinding
- superawsrolefinding
- superazureserviceprincipalfinding
- supergcpserviceaccountfinding
- superserverlessfunctionfinding
- superuserfinding
- unenforcedMfaAwsUserFinding
Methods
None.
Properties
| Property | Type | Description |
|---|---|---|
| actionSummary | actionSummary | Contains information on authorization system actions granted to an identity and actions executed by this identity in the last 90 days. This property and its values are a snapshot as of when the finding was created and might not reflect the current values for the identity. Inherited from identityFinding. |
| createdDateTime | DateTimeOffset | Defines when the finding was created. Supports $select. Inherited from finding. |
| id | String | Unique identifier for the finding. Inherited from entity. |
| identityDetails | identityDetails | An identity's information details. |
| permissionsCreepIndex | permissionsCreepIndex | A score for an identity's excessive permissions that is classified into three buckets: 0-33: low, 34-66: medium, 67-100: high. This property and its values are a snapshot as of when the finding was created and might not reflect the current score for the identity. Supports $filter (gt) and $orderby. |
Relationships
| Relationship | Type | Description |
|---|---|---|
| identity | authorizationSystemIdentity | epresents an identity in an authorization system onboarded to Permissions Management. Autoexpanded by default. |
JSON representation
The following JSON representation shows the resource type.
{
"@odata.type": "#microsoft.graph.identityFinding",
"id": "String (identifier)",
"createdDateTime": "String (timestamp)",
"permissionsCreepIndex": {
"@odata.type": "microsoft.graph.permissionsCreepIndex"
},
"identityDetails": {
"@odata.type": "#microsoft.graph.identityDetails"
},
"actionSummary": {
"@odata.type": "microsoft.graph.actionSummary"
}
}