SecurityIdentitiesHealth.ReadWrite.All
Allows the app to read and write identity security health issues on behalf of the signed-in user.
Merill's Note
For an app to access data in Microsoft Graph, the user or administrator must grant it the permissions it needs. This article lists all the Microsoft Graph APIs and your tenant data that can be accessed by the application (vendor/developer) if you consent to the
SecurityIdentitiesHealth.ReadWrite.Allpermission.If you need to create an audit report of the permissions granted to all the apps in your tenant, you can run the
Export-MsIdAppConsentGrantReportcommand. See How To: Run a quick OAuth app audit of your tenant
| Category | Application | Delegated |
|---|---|---|
| Identifier | ab03ddd5-7ae4-4f2e-8af8-86654f7e0a27 | 53e51eec-2d9b-4990-97f3-c9aa5d5652c3 |
| DisplayText | Read and write all identity security health issues | Read and write identity security health issues |
| Description | Allows the app to read and write identity security health issues without a signed-in user. | Allows the app to read and write identity security health issues on behalf of the signed-in user. |
| AdminConsentRequired | Yes | Yes |
Graph Methods
→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)
| Methods | |
|---|---|
Resources
Granting this permission allows the calling application to access (and/or update) the following information in your tenant.
Graph reference: healthIssue
| Property | Type | Description |
|---|---|---|
| additionalInformation | String collection | Contains additional information about the issue, such as a list of items to fix. |
| createdDateTime | DateTimeOffset | The date and time when the health issue was generated. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z. |
| description | String | Contains more detailed information about the health issue. |
| displayName | String | The display name of the health issue. |
| domainNames | String collection | A list of the fully qualified domain names of the domains or the sensors the health issue is related to. |
| healthIssueType | microsoft.graph.security.healthIssueType | The type of the health issue. The possible values are: sensor, global, unknownFutureValue. For a list of all health issues and their identifiers, see Microsoft Defender for Identity health issues. |
| id | String | A unique identifier that represents the health issue. Inherited from entity. |
| issueTypeId | String | The type identifier of the health issue. For a list of all health issues and their identifiers, see Microsoft Defender for Identity health issues. |
| lastModifiedDateTime | DateTimeOffset | The date and time when the health issue was last updated. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z. |
| recommendations | String collection | A list of recommended actions that can be taken to resolve the issue effectively and efficiently. These actions might include instructions for further investigation and aren't limited to prewritten responses. |
| recommendedActionCommands | String collection | A list of commands from the PowerShell module for the product that can be used to resolve the issue, if available. If no commands can be used to solve the issue, this property is empty. The commands, if present, provide a quick and efficient way to address the issue. These commands run in sequence for the single recommended fix. |
| sensorDNSNames | String collection | A list of the DNS names of the sensors the health issue is related to. |
| severity | microsoft.graph.security.healthIssueSeverity | The severity of the health issue. The possible values are: low, medium, high, unknownFutureValue. |
| status | microsoft.graph.security.healthIssueStatus | The status of the health issue. The possible values are: open, closed, suppressed, unknownFutureValue. |