Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Namespace: microsoft.graph
Important
APIs under the /beta version in Microsoft Graph are subject to change. Use of these APIs in production applications is not supported. To determine whether an API is available in v1.0, use the Version selector.
Note
Effective April 1, 2025, Microsoft Entra Permissions Management will no longer be available for purchase, and on October 1, 2025, we'll retire and discontinue support of this product. More information can be found here.
View AWS resources that can administer security tools.
Inherits from awsSecurityToolAdministrationFinding.
Methods
| Method | Return type | Description |
|---|---|---|
| List | securityToolAwsResourceAdministratorFinding collection | Get a list of the securityToolAwsResourceAdministratorFinding objects and their properties. |
| Get | securityToolAwsResourceAdministratorFinding | Read the properties and relationships of a securityToolAwsResourceAdministratorFinding object. |
Properties
| Property | Type | Description |
|---|---|---|
| createdDateTime | DateTimeOffset | Defines when the finding was created. Inherited from finding. |
| id | String | Unique identifier for the finding. Inherited from entity. |
| lastActiveDateTime | DateTimeOffset | Defines the last time the identity in this finding executed an authorization system action. Inherited from awsSecurityToolAdministrationFinding. |
| permissionsCreepIndex | permissionsCreepIndex | A score for an identity's excessive permissions that is classified into three buckets: 0-33: low, 34-66: medium, 67-100: high. This property and its values are a snapshot as of when the finding was created and might not reflect the current score for the identity. Supports $filter (gt) and $orderby. Inherited from awsSecurityToolAdministrationFinding. |
| securityTools | awsSecurityToolWebServices | AWS security tools which can be administered by the user, role, resource or serverless functionInherited from awsSecurityToolAdministrationFinding.The possible values are: macie, wafShield, cloudTrail, inspector, securityHub, detective, guardDuty, unknownFutureValue. |
Relationships
| Relationship | Type | Description |
|---|---|---|
| identity | authorizationSystemIdentity | Represents an identity in an authorization system onboarded to Permissions Management. Inherited from identityFinding. Autoexpanded by default. |
JSON representation
The following JSON representation shows the resource type.
{
"@odata.type": "#microsoft.graph.securityToolAwsResourceAdministratorFinding",
"id": "String (identifier)",
"createdDateTime": "String (timestamp)",
"securityTools": "String",
"permissionsCreepIndex": {
"@odata.type": "microsoft.graph.permissionsCreepIndex"
},
"lastActiveDateTime": "String (timestamp)"
}