Governance Assignments - Get
Get a specific governanceAssignment for the requested scope by AssignmentKey
GET https://management.azure.com/{scope}/providers/Microsoft.Security/assessments/{assessmentName}/governanceAssignments/{assignmentKey}?api-version=2022-01-01-preview
URI Parameters
Name | In | Required | Type | Description |
---|---|---|---|---|
assessment
|
path | True |
string |
The Assessment Key - A unique key for the assessment type Regex pattern: |
assignment
|
path | True |
string |
The governance assignment key - the assessment key of the required governance assignment |
scope
|
path | True |
string |
The scope of the Governance assignments. Valid scopes are: subscription (format: 'subscriptions/{subscriptionId}'), or security connector (format: 'subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Security/securityConnectors/{securityConnectorName})' |
api-version
|
query | True |
string |
API version for the operation |
Responses
Name | Type | Description |
---|---|---|
200 OK |
OK |
|
Other Status Codes |
Error response describing why the operation failed |
Security
azure_auth
Azure Active Directory OAuth2 Flow
Type:
oauth2
Flow:
implicit
Authorization URL:
https://login.microsoftonline.com/common/oauth2/authorize
Scopes
Name | Description |
---|---|
user_impersonation | impersonate your user account |
Examples
Get governanceAssignment by specific governanceAssignmentKey
Sample request
GET https://management.azure.com/subscriptions/c32e05d9-7207-4e22-bdf4-4f7d9c72e5fd/resourceGroups/compute_servers/providers/Microsoft.Compute/virtualMachines/win2012/providers/Microsoft.Security/assessments/6b9421dd-5555-2251-9b3d-2be58e2f82cd/governanceAssignments/6634ff9f-127b-4bf2-8e6e-b1737f5e789c?api-version=2022-01-01-preview
Sample response
{
"id": "/subscriptions/c32e05d9-7207-4e22-bdf4-4f7d9c72e5fd/resourceGroups/compute_servers/providers/Microsoft.Compute/virtualMachines/win2012/providers/Microsoft.Security/assessments/6b9421dd-5555-2251-9b3d-2be58e2f82cd/governanceAssignments/6634ff9f-127b-4bf2-8e6e-b1737f5e789c",
"name": "6634ff9f-127b-4bf2-8e6e-b1737f5e789c",
"type": "Microsoft.Security/assessments/governanceAssignments",
"properties": {
"owner": "user@contoso.com",
"remediationDueDate": "2022-01-07T13:00:00.0000000Z",
"remediationEta": {
"eta": "2022-01-08T13:00:00.0000000Z",
"justification": "Justification of ETA"
},
"isGracePeriod": true,
"governanceEmailNotification": {
"disableManagerEmailNotification": false,
"disableOwnerEmailNotification": false
},
"additionalData": {
"ticketNumber": 123123,
"ticketLink": "https://snow.com",
"ticketStatus": "Active"
}
}
}
Definitions
Name | Description |
---|---|
Cloud |
Common error response for all Azure Resource Manager APIs to return error details for failed operations. (This also follows the OData error response format.). |
Cloud |
The error detail. |
Error |
The resource management error additional info. |
Governance |
Governance assignment over a given scope |
Governance |
Describe the additional data of governance assignment - optional |
Governance |
The governance email weekly notification configuration. |
Remediation |
The ETA (estimated time of arrival) for remediation |
CloudError
Common error response for all Azure Resource Manager APIs to return error details for failed operations. (This also follows the OData error response format.).
Name | Type | Description |
---|---|---|
error.additionalInfo |
The error additional info. |
|
error.code |
string |
The error code. |
error.details |
The error details. |
|
error.message |
string |
The error message. |
error.target |
string |
The error target. |
CloudErrorBody
The error detail.
Name | Type | Description |
---|---|---|
additionalInfo |
The error additional info. |
|
code |
string |
The error code. |
details |
The error details. |
|
message |
string |
The error message. |
target |
string |
The error target. |
ErrorAdditionalInfo
The resource management error additional info.
Name | Type | Description |
---|---|---|
info |
object |
The additional info. |
type |
string |
The additional info type. |
GovernanceAssignment
Governance assignment over a given scope
Name | Type | Description |
---|---|---|
id |
string |
Resource Id |
name |
string |
Resource name |
properties.additionalData |
The additional data for the governance assignment - e.g. links to ticket (optional), see example |
|
properties.governanceEmailNotification |
The email notifications settings for the governance rule, states whether to disable notifications for mangers and owners |
|
properties.isGracePeriod |
boolean |
Defines whether there is a grace period on the governance assignment |
properties.owner |
string |
The Owner for the governance assignment - e.g. user@contoso.com - see example |
properties.remediationDueDate |
string |
The remediation due-date - after this date Secure Score will be affected (in case of active grace-period) |
properties.remediationEta |
The ETA (estimated time of arrival) for remediation (optional), see example |
|
type |
string |
Resource type |
GovernanceAssignmentAdditionalData
Describe the additional data of governance assignment - optional
Name | Type | Description |
---|---|---|
ticketLink |
string |
Ticket link associated with this governance assignment - for example: https://snow.com |
ticketNumber |
integer |
Ticket number associated with this governance assignment |
ticketStatus |
string |
The ticket status associated with this governance assignment - for example: Active |
GovernanceEmailNotification
The governance email weekly notification configuration.
Name | Type | Description |
---|---|---|
disableManagerEmailNotification |
boolean |
Exclude manager from weekly email notification. |
disableOwnerEmailNotification |
boolean |
Exclude owner from weekly email notification. |
RemediationEta
The ETA (estimated time of arrival) for remediation
Name | Type | Description |
---|---|---|
eta |
string |
ETA for remediation. |
justification |
string |
Justification for change of Eta. |