appliedConditionalAccessPolicy resource type
Namespace: microsoft.graph
Indicates the attributes related to applied conditional access policy or policies that are triggered by a sign-in activity.
The data in this object is returned only for callers with privileges to read conditional access data. For more information, see Permissions for viewing applied conditional access (CA) policies in sign-ins.
Properties
| Property | Type | Description |
|---|---|---|
| displayName | String | Refers to the name of the conditional access policy (example: "Require MFA for Salesforce"). |
| enforcedGrantControls | String collection | Refers to the grant controls enforced by the conditional access policy (example: "Require multifactor authentication"). |
| enforcedSessionControls | String collection | Refers to the session controls enforced by the conditional access policy (example: "Require app enforced controls"). |
| id | String | An identifier of the conditional access policy. Supports $filter (eq). |
| result | appliedConditionalAccessPolicyResult | Indicates the result of the CA policy that was triggered. Possible values are: success, failure, notApplied (policy isn't applied because policy conditions weren't met), notEnabled (This is due to the policy in a disabled state), unknown, unknownFutureValue, reportOnlySuccess, reportOnlyFailure, reportOnlyNotApplied, reportOnlyInterrupted. You must use the Prefer: include-unknown-enum-members request header to get the following values in this evolvable enum: reportOnlySuccess, reportOnlyFailure, reportOnlyNotApplied, reportOnlyInterrupted. |
JSON representation
The following JSON representation shows the resource type.
{
"displayName": "String",
"enforcedGrantControls": ["String"],
"enforcedSessionControls": ["String"],
"id": "String",
"result": "String"
}