/security/secureScoreControlProfiles with skiptoken error: "Query option 'SkipToken' is not allowed"
Graph api /security/secureScoreControlProfiles with skiptoken is been failing for a few days. The first request /security/secureScoreControlProfiles works correctly: but since it has too many results, when getting the next page with the nextlink request, it fails with: The query specified in the URI is not valid. Query option 'SkipToken' is not allowed. To allow it, set the 'AllowedQueryOptions' property on EnableQueryAttribute or QueryValidationSettings.Enable Password Expiration - Update-MgUser -PasswordPolicies None does not work
Hello, good morning everyone! I hope all is well with everyone. Well, I need to activate the option to force passwords to expire every period. I used the Admin Center for this. However, I noticed that the accounts always remain this way UserPrincipalName // PasswordNeverExpires email address removed for privacy reasons // False I get the impression that the accounts will not expire the passwords as I wish. I use the command Update-MgUser –UserId <account id> -PasswordPolicies None but absolutely nothing happens. I really need to activate this. Is there an internal case that I can resolve or that requires intervention from MS Support?
New Blog Post | Microsoft Quarterly Cyber Signals Report: Issue 5, State of Play
At Microsoft, we believe that security is a team sport and by sharing what we’re learning, we can all make the world a safer place. Cyber Signals aggregates insights we see from our research and security teams on the frontlines, leveraging trillions of daily signals to provide guidance and security insights into the threat landscape. Opportunistic threat actors exploit target-rich environments This edition of Cyber Signals explores how threat actors exploit high-profile events, particularly in connected environments, introducing cyber risk for organizers, facilities, and attendees. The National Cyber Security Centre (NCSC) found that sports organizations are increasingly targeted, with 70% of those experiencing at least one attack per year, higher than the United Kingdom’s business average. Read the full blog here: Microsoft Quarterly Cyber Signals Report: Issue 5, State of Play - Microsoft Community Hub
Programatically retrieve Secure Score Activities
Hi there, I am wondering if it is possible to retrieve a list of activities taken to increase/decrease a tenant's Secure Score. I can see that it is possible to export to CSV from the frontend, but we are looking to do this programatically. Is there a way to export these events to another Azure service, or retrieve them from the Graph API/another service?
New Blog Post | Improving efficiency of your eDiscovery workflows with Microsoft Purview
Improving efficiency of your eDiscovery workflows with Microsoft Purview - Microsoft Community Hub The demands of digital transformation are leading organizations to increasingly rely on collaboration platforms, resulting in a surge of Electronically Stored Information (ESI). This trend presents additional challenges for eDiscovery teams to sift through the vast amounts of data for investigations and litigations. According to https://www.statista.com/statistics/871513/worldwide-data-created/, the size of the digital universe is expected to reach 180 zettabytes by 2025, further compounding this challenge. Moreover, global economic headwinds are putting pressure on organizations to find ways to do more with less, causing tighter budgets and resource constraints. Today, we are excited to announce several new capabilities within Microsoft Purview eDiscovery (Premium) to help drive efficiency, improve workflows and reduce costs for litigations and investigations.
Azure Active Directory Identity Protection - QRadar Integration
Hi all We would like to integrate our Azure Active Directory Identity Protection system with QRadar on Cloud, in order to forward alerts directly to the SIEM dashboard. In the discussion opened in 2020, they say that we can do that with Graph API: https://www.ibm.com/docs/en/qradar-on-cloud?topic=options-microsoft-graph-security-api-protocol-configuration Is that possible even at the current versions of both AADI and QRadar?Apply Sensitivity Labels using Graph APIs
While using Beta Graph API for Sensitivity Label - (https://graph.microsoft.com/beta/drives/myDriveID/items/myItemID/microsoft.graph.assignSensitivityLabel), I get the below error. I am using Delegated App Permission. { "error": { "code": "notSupported", "message": "AssignSensitivityLabel API is not yet available", "innerError": { "date": "2022-09-29T16:30:30", "request-id": "edd756cc-12f2-4781-ba07-004d601f42a0", "client-request-id": "edd756cc-12f2-4781-ba07-004d601f42a0" } https://graph.microsoft.com/beta/drives/DriveID/items/ItemID/microsoft.graph.extractSensitivityLabel - This works very well using the same token and other permission levels. Please help. VasilMichev
Secure Score via Graph API
Hi I'm seeing odd behaviour, or I'm just not understanding something, If I look in the secure score dashboard (https://security.microsoft.com/) my identity score is 29.91, but if i call the graph api (https://graph.microsoft.com/v1.0/security/secureScores?$top=200) , the latest score is 33.4. I have done some searching and see people mention this a few years ago but not to much recently, MS suggested i look at the "https://management.azure.com/" api but i cant see to get much from that api for secure scores. Has anyone see this before or have any pointers? Thanks
