privilegeEscalationFinding resource type
Namespace: microsoft.graph
Important
APIs under the /beta version in Microsoft Graph are subject to change. Use of these APIs in production applications is not supported. To determine whether an API is available in v1.0, use the Version selector.
Represents findings for a list of potential exploiting of a misconfigured IAM policy or configuration oversight to gain elevated access to other permissions and resources in AWS and GCP.
Inherits from finding.
Methods
None.
Properties
| Property | Type | Description |
|---|---|---|
| createdDateTime | DateTimeOffset | Defines when the finding was created. Inherited from finding. |
| id | String | Unique identifier for the finding. Inherited from entity. |
| identityDetails | identityDetails | An identity's information details. Inherited from finding. |
| permissionsCreepIndex | permissionsCreepIndex | *A score for an identity's excessive permissions that is classified into three buckets: 0-33: low, 34-66: medium, 67-100: high. This property and its values are a snapshot as of when the finding was created and might not reflect the current score for the identity. Supports $filter (gt) and $orderby. |
Relationships
| Relationship | Type | Description |
|---|---|---|
| identity | authorizationSystemIdentity | Represents an identity in an authorization system onboarded to Permissions Management. Inherited from identityFinding. Autoexpanded by default. |
| privilegeEscalationDetails | privilegeEscalation collection | The list of escalations that the identity is capable of performing. |
JSON representation
The following JSON representation shows the resource type.
{
"@odata.type": "#microsoft.graph.privilegeEscalationFinding",
"id": "String (identifier)",
"createdDateTime": "String (timestamp)",
"permissionsCreepIndex": {
"@odata.type": "microsoft.graph.permissionsCreepIndex"
},
"identityDetails": {
"@odata.type": "#microsoft.graph.identityDetails"
}
}