Stack Overflow
Stack Overflow

Questions tagged [microsoft-graph-security]

Microsoft Graph Security refers to a subset of security-specific APIs in Microsoft Graph. Prior to release, this had previously been referred to as the "Intelligent Security Graph". This tag should generally be used in conjunction with the [microsoft-graph] tag.

The Microsoft Graph Security API describes a security-specific API connected to the Microsoft Graph that provides standard interface and schema with security solutions from Microsoft and partners.

It allows for easier integration with security solutions as well as connects to the business context from other Microsoft Graph entities.

You can use this API to build solutions that authenticate once through Microsoft Graph and make a single API call to access or act on security insights from multiple sources.

28 questions
7
votes
2 answers

Microsoft Graph API returns mail message body as HTML

I want to read my email messages and transform them into json. I am using Microsoft Graph API to query the office 365 mail box like this GraphServiceClient client = new GraphServiceClient( new DelegateAuthenticationProvider ( …
s-a-n
  • 767
  • 2
  • 9
  • 27
4
votes
2 answers

Dynamics 365 API using AAD v2

I am trying to access the Dynamics 365 Online API via a SPA. But I want to use the v2 authorization endpoint. I register my app in AAD and assign permissions for Dynamics CRM (I'm using the preview registration blade which allows me to specify…
Paul Summers
  • 153
  • 6
3
votes
2 answers

Office 365 Security and Compliance Center alerts api

Does anybody know if there is a rest API to the office 365 Security and Compliance center that can give me back any alerts raised by the Alert Policy? It seems that there are some PowerShell cmdlets that allow the creation of new Alert Policies, but…
Jimmony
  • 48
  • 7
2
votes
0 answers

Microsoft Graph - status code 504 - unknown error, after several requests

I have got a celery scheduling requests to many MS Graph resources after a few hours I get, constantly, the following response: {'error': {'code': 'UnknownError', 'message': '', 'innerError': {'date': '2020-11-27T08:19:26', 'request-id':…
xpeiro
  • 733
  • 5
  • 21
2
votes
1 answer

Unexpected results when filtering security alerts by createdDateTime

I'm seeing some unexpected behavior from the Microsoft Graph Security Alerts APIin the Graph API. When filtering by createdDateTime, when no results are expected, it is returning results for today instead of an empty array (as…
yogi
  • 1,327
  • 2
  • 12
  • 33
2
votes
2 answers

https://graph.microsoft.com/beta/security/alerts Not returning any data: value: []

The new Microsoft Graph Security API should return data from different security providers, for now, Azure AD Identity Protection and Azure Security Center. But https://graph.microsoft.com/beta/security/alerts is not returning any data (value:…
Christian Rodriguez
  • 944
  • 1
  • 9
  • 20
1
vote
0 answers

Microsoft Graph Security sample event data, or sample event generator?

I would like to check if anyone is aware of sample events, or built-in native sample event generator, for any of the below integrations? Azure Security Center Azure Active Directory Identity Protection* Microsoft Cloud App Security Microsoft…
Jason
  • 11
  • 1
1
vote
0 answers

Microsoft Graph Security alert get internet message id

What I need: Get access to the Internet Message Id for an email related incident via the Microsoft Graph Security API My problem: I used Outlook's reporting module and marked an email that was in my inbox as Phishing. This then created an event in…
Gloire
  • 1,103
  • 3
  • 17
  • 26
1
vote
1 answer

Pull extended properties from Microsoft Graph Security API?

I am trying to pull the base events related to an alert no Sentinel via API, however Graph Security API really doesn't return much. I am unable to see mapped entities or the extended properties. I've tried using the "expand" option in url to expand…
Jay
  • 549
  • 1
  • 8
  • 18
1
vote
1 answer

Inaccurate Security Graph API Responses

For some odd reason the results that I am getting from the Graph Security API the past two days are inaccurate and I can't for the life of me figure out why. If I query https://graph.microsoft.com/v1.0/security/alerts I am returned 7 old alerts…
kylemiller061
  • 11
  • 1
1
vote
1 answer

/security/alerts not returning from Azure Identity Protection (IPC)

All our customers now return no data for Azure Identity Protection (IPC). This started wednesday 12th jun. Before that we had alerts on all our customers. Rechecked many tenants against their Azure AD Identity Protection and they DO have recent…
Christian Rodriguez
  • 944
  • 1
  • 9
  • 20
1
vote
2 answers

Graph Security endpoint throwing an HTTP 403 with ADALJS

Trying to build a client-side app using the Microsoft Graph Security API. We've made the grants in the Azure Portal, granted Admin Consent, and the JWT is showing the scopes are present (snippet below): "scp": "Calendars.Read MailboxSettings.Read…
Ray Terrill
  • 66
  • 5
1
vote
1 answer

Issue to get all 100 control details using azure beta securescore graph API

We were able to get 67 control details out of 100 controls using https://graph.microsoft.com/beta/security/secureScores graph API. The remaining 33 control details are not reflecting in API response, Is there any reason why these details are not in…
Himalay Kondekar
  • 146
  • 14
1
vote
2 answers

Obtain authorization access token using /token endpoint

I am working on creating a python application which will use the Microsoft Security Graph APIs. I have followed the sample provided here with no problems. I now want to be able to create a python application which can obtain the access token (and…
walshbm15
  • 113
  • 1
  • 11
1
vote
2 answers

Bug in MS Graph? Access Denied via Microsoft Graph: /users/{userID}/mailfolders/inbox/messagerules despite permissions, consent and delegation.

I'm wondering if we just found a bug in the MS Graph API. I'm trying to access a different user's inbox mail rules via MS Graph. Here's what I did: 1.) Registered an application on the V1 Azure AD Endpoint, with ALL delegated permissions (including…
Ben Menesi
  • 163
  • 8
1
2