CloudApp-Discovery.Read.All

Allows the app to read details of discovered cloud apps in the organization, on behalf of the signed in user.

Merill's Note

For an app to access data in Microsoft Graph, the user or administrator must grant it the permissions it needs. This article lists all the Microsoft Graph APIs and your tenant data that can be accessed by the application (vendor/developer) if you consent to the CloudApp-Discovery.Read.All permission.

If you need to create an audit report of the permissions granted to all the apps in your tenant, you can run the Export-MsIdAppConsentGrantReport command. See How To: Run a quick OAuth app audit of your tenant

Category	Application	Delegated
Identifier	64a59178-dad3-4673-89db-84fdcd622fec	ad46d60e-1027-4b75-af88-7c14ccf43a19
DisplayText	Read all discovered cloud applications data	Read discovered cloud applications data
Description	Allows the app to read all details of discovered cloud apps in the organization, without a signed-in user.	Allows the app to read details of discovered cloud apps in the organization, on behalf of the signed in user.
AdminConsentRequired	Yes	No

Graph Methods

→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)

	Methods

→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)

	Methods
	GET /security/dataDiscovery/cloudAppDiscovery/uploadedStreams
	GET /security/dataDiscovery/cloudAppDiscovery/uploadedStreams/{streamId}/microsoft.graph.security.aggregatedAppsDetails(period=duration'{duration}')
	GET /security/dataDiscovery/cloudAppDiscovery/uploadedStreams/{streamId}/microsoft.graph.security.aggregatedAppsDetails(period=duration'{duration}')/{appId}
	GET /security/dataDiscovery/cloudAppDiscovery/uploadedStreams/{streamId}/microsoft.graph.security.aggregatedAppsDetails(period=duration'{duration}')/{appId}/appInfo
	GET /security/dataDiscovery/cloudAppDiscovery/uploadedStreams/{streamId}/microsoft.graph.security.aggregatedAppsDetails(period=duration'{duration}')/{appId}/devices
	GET /security/dataDiscovery/cloudAppDiscovery/uploadedStreams/{streamId}/microsoft.graph.security.aggregatedAppsDetails(period=duration'{duration}')/{appId}/ipAddresses
	GET /security/dataDiscovery/cloudAppDiscovery/uploadedStreams/{streamId}/microsoft.graph.security.aggregatedAppsDetails(period=duration'{duration}')/{appId}/users

→ Command supports delegated access (access on behalf of a user)
→ Command supports app-only access (access without a user)

	Commands
	Get-MgBetaSecurityDataDiscoveryCloudAppDiscoveryUploadedStream

Resources

Granting this permission allows the calling application to access (and/or update) the following information in your tenant.

Graph reference: cloudAppDiscoveryReport

Property	Type	Description
anonymizeMachineData	Boolean	Use `1` if the machine information is anonymized; otherwise use `0`.
anonymizeUserData	Boolean	Use `1` if the user information is anonymized; otherwise use `0`.
createdDateTime	DateTimeOffset	The date in the format specified. The Timestamp represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`.
description	String	A comment or description for the report.
displayName	String	The display name of the continuous report.
id	String	The ID of the log type supported. Inherited from entity.
isSnapshotReport	Boolean	Use `1` for a snapshot report; otherwise use `0`.
lastDataReceivedDateTime	DateTimeOffset	The date when the data was last received. The Timestamp represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`.
lastModifiedDateTime	DateTimeOffset	The date when the continuous report was last modified. The Timestamp represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`.
logDataProvider	microsoft.graph.security.logDataProvider	The applicable log data provider. Possible values are: `barracuda`, `bluecoat`, `checkpoint`, `ciscoAsa`, `ciscoIronportProxy`, `fortigate`, `paloAlto`, `squid`, `zscaler`, `mcafeeSwg`, `ciscoScanSafe`, `juniperSrx`, `sophosSg`, `websenseV75`, `websenseSiemCef`, `machineZoneMeraki`, `squidNative`, `ciscoFwsm`, `microsoftIsaW3C`, `sonicwall`, `sophosCyberoam`, `clavister`, `customParser`, `juniperSsg`, `zscalerQradar`, `juniperSrxSd`, `juniperSrxWelf`, `microsoftConditionalAppAccess`, `ciscoAsaFirepower`, `genericCef`, `genericLeef`, `genericW3C`, `iFilter`, `checkpointXml`, `checkpointSmartViewTracker`, `barracudaNextGenFw`, `barracudaNextGenFwWeblog`, `microsoftDefenderForEndpoint`, `zscalerCef`, `sophosXg`, `iboss`, `forcepoint`, `fortios`, `ciscoIronportWsaIi`, `paloAltoLeef`, `forcepointLeef`, `stormshield`, `contentkeeper`, `ciscoIronportWsaIii`, `checkpointCef`, `corrata`, `ciscoFirepowerV6`, `menloSecurityCef`, `watchguardXtm`, `openSystemsSecureWebGateway`, `wandera`, `unknownFutureValue`.
logFileCount	Int32	The count of log files history.
receiverProtocol	microsoft.graph.security.receiverProtocol	The applicable receiver protocol. Possible values are: `ftp`, `ftps`, `syslogUdp`, `syslogTcp`, `syslogTls`, `unknownFutureValue`.
supportedEntityTypes	microsoft.graph.security.entityType collection	The supported entity type. Possible values are: `userName`, `ipAddress`, `machineName`, `other`, `unknown`, `unknownFutureValue`.
supportedTrafficTypes	microsoft.graph.security.trafficType collection	The supported traffic type. Possible values are: `downloadedBytes`, `uploadedBytes`, `unknown`, `unknownFutureValue`.

Graph reference: discoveredCloudAppDetail

Property	Type	Description
category	microsoft.graph.security.appCategory	The category of the discovered app. Possible values include: `security`, `collaboration`, `hostingServices`, `onlineMeetings`, `newsAndEntertainment`, `eCommerce`, `education`, `cloudStorage`, `marketing`, `operationsManagement`, `health`, `advertising`, `productivity`, `accountingAndFinance`, `contentManagement`, `contentSharing`, `businessManagement`, `communications`, `dataAnalytics`, `businessIntelligence`, `webemail`, `codeHosting`, `webAnalytics`, `socialNetwork`, `crm`, `forums`, `humanResourceManagement`, `transportationAndTravel`, `productDesign`, `sales`, `cloudComputingPlatform`, `projectManagement`, `personalInstantMessaging`, `developmentTools`, `itServices`, `supplyChainAndLogistics`, `propertyManagement`, `customerSupport`, `internetOfThings`, `vendorManagementSystems`, `websiteMonitoring`, `generativeAi`, `unknown`, `unknownFutureValue`, `aiModelProvider`, `mcpServer`, `clientAiApp`. Use the `Prefer: include-unknown-enum-members` request header to get the following values in this evolvable enum: `aiModelProvider`, `mcpServer`, `clientAiApp`.
displayName	String	The app name.
domains	String collection	The domain.
downloadNetworkTrafficInBytes	Int64	The download traffic size.
id	String	The SaaSDB ID of the app. Inherited from entity.
ipAddressCount	Int64	The IP address.
lastSeenDateTime	DateTimeOffset	The last seen date of the discovered app. The Timestamp represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`.
riskScore	Int64	The risk score of the app.
tags	String collection	The tags applied to an app. Possible values include `Unsanctioned`, `Sanctioned`, `Monitored`, or a custom value.
transactionCount	Int64	The app transaction count.
uploadNetworkTrafficInBytes	Int64	The app upload traffic size, in bytes.
userCount	Int64	The count of users who use the app.

Property	Type	Description
name	String	The name of the cloud app.

Graph reference: discoveredCloudAppInfo

Property	Type	Description
csaStarLevel	microsoft.graph.security.appInfoCsaStarLevel	Indicates the CSA star program certification level of the app. Possible values are: `selfAssessment`, `certification`, `attestation`, `cStarAssessment`, `continuousMonitoring`, `unknown`, `unknownFutureValue`.
dataAtRestEncryptionMethod	microsoft.graph.security.appInfoDataAtRestEncryptionMethod	Indicates the encryption mode for data at rest of the app. The possible values are: `aes`, `bitLocker`, `blowfish`, `des3`, `des`, `rc4`, `rsA`, `notSupported`, `unknown`, `unknownFutureValue`.
dataCenter	String	Indicates the countries or regions in which your data center resides.
dataRetentionPolicy	microsoft.graph.security.appInfoDataRetentionPolicy	Indicates the app's policy for user data retention after account termination. The possible values are: `dataRetained`, `deletedImmediately`, `deletedWithinTwoWeeks`, `deletedWithinOneMonth`, `deletedWithinThreeMonths`, `deletedWithinMoreThanThreeMonths`, `unknown`, `unknownFutureValue`.
dataTypes	microsoft.graph.security.appInfoUploadedDataTypes	Indicates the data types that an end user can upload to the app. The possible values are: `documents`, `mediaFiles`, `codingFiles`, `creditCards`, `databaseFiles`, `none`, `unknown`, `unknownFutureValue`.
domainRegistrationDateTime	DateTimeOffset	Indicates the date when the app domain was registered.
encryptionProtocol	microsoft.graph.security.appInfoEncryptionProtocol	Indicates the TLS encryption protocol version. The possible values are: `tls1_0`, `tls1_1`, `tls1_2`, `tls1_3`, `notApplicable`, `notSupported`, `unknown`, `unknownFutureValue`, `ssl3`. Use the `Prefer: include-unknown-enum-members` request header to get the following value in this evolvable enum: `ssl3`.
fedRampLevel	microsoft.graph.security.appInfoFedRampLevel	Indicates the FedRAMP compliant status of the app. The possible values are: `high`, `moderate`, `low`, `liSaaS`, `unknown`, `unknownFutureValue`, `notSupported`. Use the `Prefer: include-unknown-enum-members` request header to get the following value in this evolvable enum: `notSupported`.
founded	Int32	Indicates the year that the specific app vendor was established.
gdprReadinessStatement	String	Indicates the GDPR readiness of the app in relation to policies app provides to safeguard personal user data.
headquarters	String	Indicates the location of the headquarters of the app.
holding	microsoft.graph.security.appInfoHolding	Indicates the ownership model of the app. The possible values are: `private`, `public`, `unknown`, `unknownFutureValue`.
hostingCompany	String	Indicates the company name that provides hosting services for the app.
id	String	Indicates the identified unique SaaS ID of the app. Inherited from entity.
isAdminAuditTrail	microsoft.graph.security.cloudAppInfoState	Indicates the availability of an admin audit trail for the app. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isCobitCompliant	microsoft.graph.security.cloudAppInfoState	Indicates the compliance status of the app with the Control Objectives for Information Technology (COBIT). The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isCoppaCompliant	microsoft.graph.security.cloudAppInfoState	Indicates the compliance status of the app with the Children's Online Privacy Protection Rule (COPPA). The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isDataAuditTrail	microsoft.graph.security.cloudAppInfoState	Indicates the compliance status of the app with availability of a data audit trail. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isDataClassification	microsoft.graph.security.cloudAppInfoState	Indicates the compliance status of the app with regards to data classification. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isDataOwnership	microsoft.graph.security.cloudAppInfoState	Indicates the compliance status of the app that pertains to data ownership. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isDisasterRecoveryPlan	microsoft.graph.security.cloudAppInfoState	Indicates if the app has a disaster recovery plan. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isDmca	microsoft.graph.security.cloudAppInfoState	Indicates the compliance status of the app with the Digital Millennium Copyright Act (DMCA). The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isFerpaCompliant	microsoft.graph.security.cloudAppInfoState	Indicates the compliance status of the app with the Family Educational Rights and Privacy Act (FERPA). The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isFfiecCompliant	microsoft.graph.security.cloudAppInfoState	Indicates the compliance status of the app with the Federal Financial Institutions Examination Council guidance on the risk management. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isFileSharing	microsoft.graph.security.cloudAppInfoState	Indicates if the app has features that allow file sharing between users. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isFinraCompliant	microsoft.graph.security.cloudAppInfoState	Indicates the compliance status of the app with the Financial Industry Regulatory Authority (FINRA). The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isFismaCompliant	microsoft.graph.security.cloudAppInfoState	Indicates the compliance status of the app with the Federal Information Security Modernization Act (FISMA). The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGaapCompliant	microsoft.graph.security.cloudAppInfoState	Indicates the compliance status of the app with the Generally Accepted Accounting Principles (GAAP). The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGdprDataProtectionImpactAssessment	microsoft.graph.security.cloudAppInfoState	Indicates if the app conducts regular GDPR data assessments to identify risk to individuals. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGdprDataProtectionOfficer	microsoft.graph.security.cloudAppInfoState	Indicates if the app appoints a data protection officer to oversee data security strategy and GDPR compliance. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGdprDataProtectionSecureCrossBorderDataTransfer	microsoft.graph.security.cloudAppInfoState	Indicates if the app securely transfers data across borders as GDPR guidelines recommend. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGdprImpactAssessment	microsoft.graph.security.cloudAppInfoState	Indicates if the app conducts data protection GDPR impact assessments to identify risk to individuals. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGdprLawfulBasisForProcessing	microsoft.graph.security.cloudAppInfoState	Indicates if the app has a valid lawful basis for processing personal data. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGdprReportDataBreaches	microsoft.graph.security.cloudAppInfoState	Indicates if the app reports personal data breaches to the relevant supervisory authority as per GDPR. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGdprRightsRelatedToAutomatedDecisionMaking	microsoft.graph.security.cloudAppInfoState	Indicates if the app provides specific rights related to automated decision-making and profiling as per GDPR. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGdprRightToAccess	microsoft.graph.security.cloudAppInfoState	Indicates if the app gives the rights to obtain a copy of a user's personal data as per GDPR. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGdprRightToBeInformed	microsoft.graph.security.cloudAppInfoState	Indicates if the app gives the right to inform users about the data collection and use of their personal data as per GDPR. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGdprRightToDataPortablility	microsoft.graph.security.cloudAppInfoState	Indicates if the app provides individuals with the ability to obtain and reuse their personal data for their own purposes across different services upon request. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGdprRightToErasure	microsoft.graph.security.cloudAppInfoState	Indicates if the app stops processing and deletetion of an individual's personal data upon request. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGdprRightToObject	microsoft.graph.security.cloudAppInfoState	Indicates if the app provides individuals with the ability to object to the processing of their personal data in certain circumstances. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGdprRightToRectification	microsoft.graph.security.cloudAppInfoState	Indicates if the app provides individuals with the ability to rectify their personal data. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGdprRightToRestrictionOfProcessing	microsoft.graph.security.cloudAppInfoState	Indicates if the app provides individuals with the ability to block or suppress the processing of personal data. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGdprSecureCrossBorderDataControl	microsoft.graph.security.cloudAppInfoState	Indicates if the app securely transfers data across borders. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isGlbaCompliant	microsoft.graph.security.cloudAppInfoState	Indicates if the app is compliant with the Gramm-Leach-Bliley Act (GLBA). The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isHipaaCompliant	microsoft.graph.security.cloudAppInfoState	Indicates if the app is compliant with the Health Insurance Portability and Accountability Act (HIPAA). The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isHitrustCsfCompliant	microsoft.graph.security.cloudAppInfoState	Indicates if the app is compliant with the HITRUST Framework (HITRUST CSF). The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isHttpSecurityHeadersContentSecurityPolicy	microsoft.graph.security.cloudAppInfoState	Indicates if the app is compliant with the HITRUST Framework (HITRUST CSF). The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isHttpSecurityHeadersStrictTransportSecurity	microsoft.graph.security.cloudAppInfoState	Indicates if the HTTP security headers of the app provide another layer of security by helping to mitigate attacks and security vulnerabilities. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isHttpSecurityHeadersXContentTypeOptions	microsoft.graph.security.cloudAppInfoState	Indicates if the HTTP security headers of the app provide another layer of security by helping to mitigate attacks and security vulnerabilities. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isHttpSecurityHeadersXFrameOptions	microsoft.graph.security.cloudAppInfoState	Indicates if the HTTP security headers of the app provide another layer of security by helping to mitigate attacks and security vulnerabilities. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isHttpSecurityHeadersXXssProtection	microsoft.graph.security.cloudAppInfoState	Indicates if the HTTP security headers of the app provide another layer of security by helping to mitigate attacks and security vulnerabilities. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isIpAddressRestriction	microsoft.graph.security.cloudAppInfoState	Indicates if the app supports the restriction of specific IP addresses by the app. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isIsae3402Compliant	microsoft.graph.security.cloudAppInfoState	Indicates if the app is ISAE3402 compliant. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isIso27001Compliant	microsoft.graph.security.cloudAppInfoState	Indicates if the app is ISO27001 compliant. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isIso27017Compliant	microsoft.graph.security.cloudAppInfoState	Indicates if the app is ISO27017 compliant. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isIso27018Compliant	microsoft.graph.security.cloudAppInfoState	Indicates if the app is ISO27018 compliant. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isItarCompliant	microsoft.graph.security.cloudAppInfoState	Indicates if the app is compliant with International Traffic in Arms Regulations (ITAR). The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isMultiFactorAuthentication	microsoft.graph.security.cloudAppInfoState	Indicates if the app supports multifactor authentication. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isPasswordPolicy	microsoft.graph.security.cloudAppInfoState	Indicates if the app enforces a password policy. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isPasswordPolicyChangePasswordPeriod	microsoft.graph.security.cloudAppInfoState	Indicates if the app forces users to reset their password periodically. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isPasswordPolicyCharacterCombination	microsoft.graph.security.cloudAppInfoState	Indicates if the app forces a character combination on password creation. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isPasswordPolicyPasswordHistoryAndReuse	microsoft.graph.security.cloudAppInfoState	Indicates if the app disallows the reuse of old passwords. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isPasswordPolicyPasswordLengthLimit	microsoft.graph.security.cloudAppInfoState	Indicates if the app enforces a length limit on password creation. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isPasswordPolicyPersonalInformationUse	microsoft.graph.security.cloudAppInfoState	Indicates if the app disallows the use of personal information in passwords. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isPenetrationTesting	microsoft.graph.security.cloudAppInfoState	Indicates if the app carries out penetration testing to detect and assess network vulnerabilities. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isPrivacyShieldCompliant	microsoft.graph.security.cloudAppInfoState	Indicates if the app complies with the EU-US Privacy Shield Framework. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isRememberPassword	microsoft.graph.security.cloudAppInfoState	Indicates if the app enables the option for remembering and saving user passwords in the app. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isRequiresUserAuthentication	microsoft.graph.security.cloudAppInfoState	Indicates if the app requires user authentication. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isSoc1Compliant	microsoft.graph.security.cloudAppInfoState	Indicates if the app is Soc1 compliant. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isSoc2Compliant	microsoft.graph.security.cloudAppInfoState	Indicates if the app is Soc2 compliant. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isSoc3Compliant	microsoft.graph.security.cloudAppInfoState	Indicates if the app is Soc3 compliant. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isSoxCompliant	microsoft.graph.security.cloudAppInfoState	Indicates if the app is Sox compliant. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isSp80053Compliant	microsoft.graph.security.cloudAppInfoState	Indicates if the app is Sp80053 compliant. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isSsae16Compliant	microsoft.graph.security.cloudAppInfoState	Indicates if the app is Ssae16 compliant. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isSupportsSaml	microsoft.graph.security.cloudAppInfoState	Indicates if the app supports SAML authentication. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isTrustedCertificate	microsoft.graph.security.cloudAppInfoState	Indicates if the app server provides a trusted SSL cetificate. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isUserAuditTrail	microsoft.graph.security.cloudAppInfoState	Indicates if the app supports availability of audit trail per user account. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isUserCanUploadData	microsoft.graph.security.cloudAppInfoState	Indicates if the app supports the ability of users to upload data. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isUserRolesSupport	microsoft.graph.security.cloudAppInfoState	Indicates if the app supports distribution of users by roles and levels of permission. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
isValidCertificateName	microsoft.graph.security.cloudAppInfoState	Indicates if the app server provides an SSL certificate that matches the domain name. The possible values are: `true`, `false`, `unknown`, `unknownFutureValue`.
latestBreachDateTime	DateTimeOffset	Indicates the last date of the data breach for the company.
logonUrls	String	Indicates the URL that users can use to sign into the app.
pciDssVersion	microsoft.graph.security.appInfoPciDssVersion	Indicates the pciDss version. The possible values are: `v1`, `v2`, `v3`, `v3_1`, `v3_2`, `v3_2_1`, `notSupported`, `unknown`, `unknownFutureValue`, `v4`. Use the `Prefer: include-unknown-enum-members` request header to get the following value in this evolvable enum: `v4`.
vendor	String	Indicates the app vendor.

Property	Type	Description
ipAddress	String	The IP address associated with a discovered cloud app.

Property	Type	Description
userIdentifier	String	The identifier of a user who accessed the discovered cloud app.

Graph reference: endpointDiscoveredCloudAppDetail

Property	Type	Description
category	microsoft.graph.security.appCategory	The list of category of discovered apps. The possible values are: `security`, `collaboration`, `hostingServices`, `onlineMeetings`, `newsAndEntertainment`, `eCommerce`, `education`, `cloudStorage`, `marketing`, `operationsManagement`, `health`, `advertising`, `productivity`, `accountingAndFinance`, `contentManagement`, `contentSharing`, `businessManagement`, `communications`, `dataAnalytics`, `businessIntelligence`, `webemail`, `codeHosting`, `webAnalytics`, `socialNetwork`, `crm`, `forums`, `humanResourceManagement`, `transportationAndTravel`, `productDesign`, `sales`, `cloudComputingPlatform`, `projectManagement`, `personalInstantMessaging`, `developmentTools`, `itServices`, `supplyChainAndLogistics`, `propertyManagement`, `customerSupport`, `internetOfThings`, `vendorManagementSystems`, `websiteMonitoring`, `generativeAi`, `unknown`, `unknownFutureValue`, `aiModelProvider`, `mcpServer`, `clientAiApp`. Use the `Prefer: include-unknown-enum-members` request header to get the following values in this evolvable enum: `aiModelProvider`, `mcpServer`, `clientAiApp`. Inherited from discoveredCloudAppDetail.
deviceCount	Int64	The number of devices that accessed the discovered app.
displayName	String	The name of the discovered cloud app. Inherited from discoveredCloudAppDetail.
domains	String collection	The list of domains identified as belonging to the discovered app. Inherited from discoveredCloudAppDetail.
downloadNetworkTrafficInBytes	Int64	The amount of download traffic from the app. Inherited from discoveredCloudAppDetail.
id	String	The ID of the discovered app. Inherited from discoveredCloudAppDetail.
ipAddressCount	Int64	The count of IP addresses that accessed the discovered app. Inherited from discoveredCloudAppDetail.
lastSeenDateTime	DateTimeOffset	The date and time when the app was last seen. The Timestamp represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Inherited from discoveredCloudAppDetail.
riskScore	Int64	The risk score of the discovered app. Inherited from discoveredCloudAppDetail.
tags	String collection	A list of tags applied to a discovered app. Inherited from discoveredCloudAppDetail.
transactionCount	Int64	The total transanctions on the discovered app. Inherited from discoveredCloudAppDetail.
uploadNetworkTrafficInBytes	Int64	The upload traffic on the discovered app. Inherited from discoveredCloudAppDetail.
userCount	Int64	The count of users who access the discovered app. Inherited from discoveredCloudAppDetail.

Table of Contents

CloudApp-Discovery.Read.All

Graph Methods

Resources