I want to fetch regulatory compliance data from microsoft defender for cloud via API in postman, is there any way to do this ?

Question

I see this api on microsoft learn platform but I am not able to replicate the same in postman, I am not sure what type of permission i need to give my application in order for me to fetch regulatory compliance data just same as shown below but via postman.

https://learn.microsoft.com/en-us/rest/api/defenderforcloud/regulatory-compliance-standards/list?view=rest-defenderforcloud-2019-01-01-preview&tabs=HTTP#code-try-0

Answer 1

Hi @Milan Pandya , what are you not able to replicate? Are you receiving any errors or warnings?

The following steps should work for you. Please let me know if they don't:

1. Obtain the API URL and generate an API token from your Microsoft Defender for Cloud portal. You can find the API URL in the Defender for Cloud settings under the "Cloud Apps" section.
2. Configure Postman:
   • Open Postman and create a new request.
   • Set the request type to GET.
   • Enter the API URL in the request URL field. For example, https://management.azure.com/subscriptions/{subscriptionId}/providers/Microsoft.Security/regulatoryComplianceStandards?api-version=2019-01-01-preview.
3. In the Headers tab, add the following headers:
   • Authorization: Bearer <your_token_key>
   • Content-Type: application/json
4. Assign the appropriate roles to your application: "To access all compliance data in your tenant, you need to have at least a Reader level of permissions on the applicable scope of your tenant, or all relevant subscriptions. The minimum set of roles for accessing the dashboard and managing standards is Resource Policy Contributor and Security Admin."
5. Send the Request.

Please let me know if you have any questions and I can help you further.

If this answer helps you please mark "Accept Answer" so other users can reference it.

Thank you,

James