appliedConditionalAccessPolicy resource type
Namespace: microsoft.graph
Indicates the attributes related to applied conditional access policy or policies that are triggered by a sign-in activity.
The data in this object is returned only for callers with privileges to read conditional access data. For more information, see Viewing applied conditional access (CA) policies in sign-ins.
Properties
| Property | Type | Description |
|---|---|---|
| displayName | String | Refers to the name of the conditional access policy (example: "Require MFA for Salesforce"). |
| enforcedGrantControls | String collection | Refers to the grant controls enforced by the conditional access policy (example: "Require multifactor authentication"). |
| enforcedSessionControls | String collection | Refers to the session controls enforced by the conditional access policy (example: "Require app enforced controls"). |
| id | String | An identifier of the conditional access policy. Supports $filter (eq). |
| result | appliedConditionalAccessPolicyResult | Indicates the result of the CA policy that was triggered. Possible values are: success, failure, notApplied (policy isn't applied because policy conditions weren't met), notEnabled (This is due to the policy in a disabled state), unknown, unknownFutureValue, reportOnlySuccess, reportOnlyFailure, reportOnlyNotApplied, reportOnlyInterrupted. You must use the Prefer: include-unknown-enum-members request header to get the following values in this evolvable enum: reportOnlySuccess, reportOnlyFailure, reportOnlyNotApplied, reportOnlyInterrupted. |
JSON representation
The following JSON representation shows the resource type.
{
"displayName": "String",
"enforcedGrantControls": ["String"],
"enforcedSessionControls": ["String"],
"id": "String",
"result": "String"
}