List riskyUsers
Article
08/19/2023
7 contributors
Feedback
In this article
Namespace: microsoft.graph
Get a list of the riskyUser objects and their properties.
Permissions
One of the following permissions is required to call this API. To learn more, including how to choose permissions, see Permissions .
Permission type
Permissions (from least to most privileged)
Delegated (work or school account)
IdentityRiskyUser.Read.All
Delegated (personal Microsoft account)
Not supported.
Application
IdentityRiskyUser.Read.All
For delegated scenarios, the signed-in user must be assigned at least one of the following Azure AD roles .
Global Reader
Security Operator
Security Reader
Security Administrator
HTTP request
GET /identityProtection/riskyUsers
Optional query parameters
This method supports some of the OData query parameters to help customize the response. For general information, see OData query parameters .
Name
Description
Authorization
Bearer {token}. Required.
Request body
Do not supply a request body for this method.
Response
If successful, this method returns a 200 OK response code and a collection of riskyUser objects in the response body.
Examples
Request
GET https://graph.microsoft.com/v1.0/identityProtection/riskyUsers
// Code snippets are only available for the latest version. Current version is 5.x
var graphClient = new GraphServiceClient(requestAdapter);
var result = await graphClient.IdentityProtection.RiskyUsers.GetAsync();
For details about how to add the SDK to your project and create an authProvider instance, see the SDK documentation .
import (
"context"
msgraphsdk "github.com/microsoftgraph/msgraph-sdk-go"
//other-imports
)
graphClient := msgraphsdk.NewGraphServiceClientWithCredentials(cred, scopes)
riskyUsers, err := graphClient.IdentityProtection().RiskyUsers().Get(context.Background(), nil)
For details about how to add the SDK to your project and create an authProvider instance, see the SDK documentation .
GraphServiceClient graphClient = GraphServiceClient.builder().authenticationProvider( authProvider ).buildClient();
RiskyUserCollectionPage riskyUsers = graphClient.identityProtection().riskyUsers()
.buildRequest()
.get();
For details about how to add the SDK to your project and create an authProvider instance, see the SDK documentation .
const options = {
authProvider,
};
const client = Client.init(options);
let riskyUsers = await client.api('/identityProtection/riskyUsers')
.get();
For details about how to add the SDK to your project and create an authProvider instance, see the SDK documentation .
<?php
// THIS SNIPPET IS A PREVIEW VERSION OF THE SDK. NON-PRODUCTION USE ONLY
$graphServiceClient = new GraphServiceClient($tokenRequestContext, $scopes);
$result = $graphServiceClient->identityProtection()->riskyUsers()->get()->wait();
For details about how to add the SDK to your project and create an authProvider instance, see the SDK documentation .
# THE PYTHON SDK IS IN PREVIEW. FOR NON-PRODUCTION USE ONLY
graph_client = GraphServiceClient(request_adapter)
result = await graph_client.identity_protection.risky_users.get()
For details about how to add the SDK to your project and create an authProvider instance, see the SDK documentation .
Response
Note: The response object shown here might be shortened for readability.
HTTP/1.1 200 OK
Content-Type: application/json
{
"value": [
{
"@odata.type": "#microsoft.graph.riskyUser",
"id": "d1d4a5d4-a5d4-d1d4-d4a5-d4d1d4a5d4d1",
"isDeleted": "Boolean",
"isProcessing": "Boolean",
"riskLastUpdatedDateTime": "String (timestamp)",
"riskLevel": "String",
"riskState": "String",
"riskDetail": "String",
"userDisplayName": "String",
"userPrincipalName": "String"
}
]
}