secureScoreControlProfile resource type

Namespace: microsoft.graph

Represents a tenant's secure score per control data. By default, this resource returns all controls for a tenant and can explicitly pull individual controls.

Methods

Method Return Type Description
List secure score control profiles secureScoreControlProfile Read properties and metadata of a secureScoreControlProfiles object.
Get secure score control profile securescorecontrolprofile Read properties and metadata of a secureScoreControlProfiles object.
Update secure score control profiles securescorecontrolprofile Update an securescorecontrolprofile object.

Properties

Name Type Description
actionType String Control action type (Config, Review, Behavior).
actionUrl String URL to where the control can be actioned.
azureTenantId String GUID string for tenant ID.
complianceInformation complianceInformation collection The collection of compliance information associated with secure score control
controlCategory String Control action category (Identity, Data, Device, Apps, Infrastructure).
controlStateUpdates secureScoreControlStateUpdate collection Flag to indicate where the tenant has marked a control (ignored, thirdParty, reviewed) (supports update).
deprecated Boolean Flag to indicate if a control is depreciated.
id String Provider-generated GUID/unique identifier. Read-only. Required.
implementationCost String Resource cost of implemmentating control (low, moderate, high).
lastModifiedDateTime DateTimeOffset Time at which the control profile entity was last modified. The Timestamp type represents date and time
maxScore Double max attainable score for the control.
rank Int32 Microsoft's stack ranking of control.
remediation String Description of what the control will help remediate.
remediationImpact String Description of the impact on users of the remediation.
service String Service that owns the control (Exchange, Sharepoint, Microsoft Entra ID).
threats String collection List of threats the control mitigates (accountBreach, dataDeletion, dataExfiltration, dataSpillage, elevationOfPrivilege, maliciousInsider, passwordCracking, phishingOrWhaling, spoofing).
tier String Control tier (Core, Defense in Depth, Advanced.)
title String Title of the control.
userImpact String User impact of implementing control (low, moderate, high).
vendorInformation securityVendorInformation Complex type containing details about the security product/service vendor, provider, and subprovider (for example, vendor=Microsoft; provider=SecureScore). Required.

Relationships

None.

JSON representation

The following JSON representation shows the resource type.

{
  "actionType": "String",
  "actionUrl": "String",
  "azureTenantId": "String",
  "complianceInformation": [{"@odata.type": "microsoft.graph.complianceInformation"}],
  "controlCategory": "String",
  "controlStateUpdates": [{"@odata.type": "microsoft.graph.secureScoreControlStateUpdate"}],
  "deprecated": "Boolean",
  "id": "String (identifier)",
  "implementationCost": "String",
  "lastModifiedDateTime": "String (timestamp)",
  "maxScore": "Double",
  "rank": "Int32",
  "remediation": "String",
  "remediationImpact": "String",
  "service": "String",
  "threats": ["String"],
  "tier": "String",
  "title": "String",
  "userImpact": "String",
  "vendorInformation": {"@odata.type": "microsoft.graph.securityVendorInformation"}
}