{ "$schema": "https://json-schema.org/draft/2020-12/schema", "$id": "#/components/schemas/microsoft.graph.secureScoreControlProfile", "title": "microsoft.graph.secureScoreControlProfile", "allOf": [ { "$ref": "#/components/schemas/microsoft.graph.entity" }, { "title": "secureScoreControlProfile", "required": [ "@odata.type" ], "type": "object", "properties": { "actionType": { "type": "string", "description": "Control action type (Config, Review, Behavior).", "nullable": true }, "actionUrl": { "type": "string", "description": "URL to where the control can be actioned.", "nullable": true }, "azureTenantId": { "type": "string", "description": "GUID string for tenant ID." }, "complianceInformation": { "type": "array", "items": { "$ref": "#/components/schemas/microsoft.graph.complianceInformation" }, "description": "The collection of compliance information associated with secure score control. Not implemented. Currently returns null." }, "controlCategory": { "type": "string", "description": "Control action category (Identity, Data, Device, Apps, Infrastructure).", "nullable": true }, "controlStateUpdates": { "type": "array", "items": { "$ref": "#/components/schemas/microsoft.graph.secureScoreControlStateUpdate" }, "description": "Flag to indicate where the tenant has marked a control (ignored, thirdParty, reviewed) (supports update)." }, "deprecated": { "type": "boolean", "description": "Flag to indicate if a control is depreciated.", "nullable": true }, "implementationCost": { "type": "string", "description": "Resource cost of implemmentating control (low, moderate, high).", "nullable": true }, "lastModifiedDateTime": { "pattern": "^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$", "type": "string", "description": "Time at which the control profile entity was last modified. The Timestamp type represents date and time", "format": "date-time", "nullable": true }, "maxScore": { "oneOf": [ { "type": "number", "format": "double", "nullable": true }, { "type": "string", "nullable": true }, { "$ref": "#/components/schemas/ReferenceNumeric" } ], "description": "max attainable score for the control." }, "rank": { "maximum": 2147483647, "minimum": -2147483648, "type": "number", "description": "Microsoft's stack ranking of control.", "format": "int32", "nullable": true }, "remediation": { "type": "string", "description": "Description of what the control will help remediate.", "nullable": true }, "remediationImpact": { "type": "string", "description": "Description of the impact on users of the remediation.", "nullable": true }, "service": { "type": "string", "description": "Service that owns the control (Exchange, Sharepoint, Microsoft Entra ID).", "nullable": true }, "threats": { "type": "array", "items": { "type": "string", "nullable": true }, "description": "List of threats the control mitigates (accountBreach, dataDeletion, dataExfiltration, dataSpillage, elevationOfPrivilege, maliciousInsider, passwordCracking, phishingOrWhaling, spoofing)." }, "tier": { "type": "string", "description": "Control tier (Core, Defense in Depth, Advanced.)", "nullable": true }, "title": { "type": "string", "description": "Title of the control.", "nullable": true }, "userImpact": { "type": "string", "description": "User impact of implementing control (low, moderate, high).", "nullable": true }, "vendorInformation": { "anyOf": [ { "$ref": "#/components/schemas/microsoft.graph.securityVendorInformation" }, { "type": "object", "nullable": true } ], "description": "Complex type containing details about the security product/service vendor, provider, and subprovider (for example, vendor=Microsoft; provider=SecureScore). Required." }, "@odata.type": { "type": "string" } } } ], "x-ms-discriminator-value": "#microsoft.graph.secureScoreControlProfile" }