Microsoft Graph · Schema
microsoft.graph.secureScoreControlProfile
Azure ADCollaborationContactsDocumentsEmailGraphIdentityMicrosoftOffice 365PresentationsProductivitySpreadsheetsT1Tasks
JSON Schema
{
"$schema": "https://json-schema.org/draft/2020-12/schema",
"$id": "#/components/schemas/microsoft.graph.secureScoreControlProfile",
"title": "microsoft.graph.secureScoreControlProfile",
"allOf": [
{
"$ref": "#/components/schemas/microsoft.graph.entity"
},
{
"title": "secureScoreControlProfile",
"required": [
"@odata.type"
],
"type": "object",
"properties": {
"actionType": {
"type": "string",
"description": "Control action type (Config, Review, Behavior).",
"nullable": true
},
"actionUrl": {
"type": "string",
"description": "URL to where the control can be actioned.",
"nullable": true
},
"azureTenantId": {
"type": "string",
"description": "GUID string for tenant ID."
},
"complianceInformation": {
"type": "array",
"items": {
"$ref": "#/components/schemas/microsoft.graph.complianceInformation"
},
"description": "The collection of compliance information associated with secure score control. Not implemented. Currently returns null."
},
"controlCategory": {
"type": "string",
"description": "Control action category (Identity, Data, Device, Apps, Infrastructure).",
"nullable": true
},
"controlStateUpdates": {
"type": "array",
"items": {
"$ref": "#/components/schemas/microsoft.graph.secureScoreControlStateUpdate"
},
"description": "Flag to indicate where the tenant has marked a control (ignored, thirdParty, reviewed) (supports update)."
},
"deprecated": {
"type": "boolean",
"description": "Flag to indicate if a control is depreciated.",
"nullable": true
},
"implementationCost": {
"type": "string",
"description": "Resource cost of implemmentating control (low, moderate, high).",
"nullable": true
},
"lastModifiedDateTime": {
"pattern": "^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$",
"type": "string",
"description": "Time at which the control profile entity was last modified. The Timestamp type represents date and time",
"format": "date-time",
"nullable": true
},
"maxScore": {
"oneOf": [
{
"type": "number",
"format": "double",
"nullable": true
},
{
"type": "string",
"nullable": true
},
{
"$ref": "#/components/schemas/ReferenceNumeric"
}
],
"description": "max attainable score for the control."
},
"rank": {
"maximum": 2147483647,
"minimum": -2147483648,
"type": "number",
"description": "Microsoft's stack ranking of control.",
"format": "int32",
"nullable": true
},
"remediation": {
"type": "string",
"description": "Description of what the control will help remediate.",
"nullable": true
},
"remediationImpact": {
"type": "string",
"description": "Description of the impact on users of the remediation.",
"nullable": true
},
"service": {
"type": "string",
"description": "Service that owns the control (Exchange, Sharepoint, Microsoft Entra ID).",
"nullable": true
},
"threats": {
"type": "array",
"items": {
"type": "string",
"nullable": true
},
"description": "List of threats the control mitigates (accountBreach, dataDeletion, dataExfiltration, dataSpillage, elevationOfPrivilege, maliciousInsider, passwordCracking, phishingOrWhaling, spoofing)."
},
"tier": {
"type": "string",
"description": "Control tier (Core, Defense in Depth, Advanced.)",
"nullable": true
},
"title": {
"type": "string",
"description": "Title of the control.",
"nullable": true
},
"userImpact": {
"type": "string",
"description": "User impact of implementing control (low, moderate, high).",
"nullable": true
},
"vendorInformation": {
"anyOf": [
{
"$ref": "#/components/schemas/microsoft.graph.securityVendorInformation"
},
{
"type": "object",
"nullable": true
}
],
"description": "Complex type containing details about the security product/service vendor, provider, and subprovider (for example, vendor=Microsoft; provider=SecureScore). Required."
},
"@odata.type": {
"type": "string"
}
}
}
],
"x-ms-discriminator-value": "#microsoft.graph.secureScoreControlProfile"
}