Standard Assignments - List
Get a list of all relevant standard assignments over a scope
GET https://management.azure.com/{scope}/providers/Microsoft.Security/standardAssignments?api-version=2024-08-01URI Parameters
| Name | In | Required | Type | Description |
|---|---|---|---|---|
|
scope
|
path | True |
string |
The scope of the standard assignment. Valid scopes are: management group (format: 'providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: 'subscriptions/{subscriptionId}'), or security connector (format: 'subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Security/securityConnectors/{securityConnectorName})' |
|
api-version
|
query | True |
string minLength: 1 |
The API version to use for this operation. |
Responses
| Name | Type | Description |
|---|---|---|
| 200 OK |
Standard assignment list by scope |
|
| Other Status Codes |
Error response describing why the operation failed |
Security
azure_auth
Azure Active Directory OAuth2 Flow
Type:
oauth2
Flow:
implicit
Authorization URL:
https://login.microsoftonline.com/common/oauth2/authorize
Scopes
| Name | Description |
|---|---|
| user_impersonation | impersonate your user account |
Examples
List standard assignments
Sample request
Sample response
{
"value": [
{
"id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector/providers/Microsoft.Security/standardAssignments/1f3afdf9-d0c9-4c3d-847f-89da613e70a8",
"name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8",
"type": "Microsoft.Security/standardAssignments",
"properties": {
"displayName": "ASC Default",
"description": "Set of policies monitored by Azure Security Center for cross cloud",
"assignedStandard": {
"id": "/providers/Microsoft.Security/securityStandards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8"
},
"effect": "Audit",
"excludedScopes": [],
"metadata": {
"createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936",
"createdOn": "2022-11-10T08:31:26.7993124Z",
"lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936",
"lastUpdatedOn": "2022-11-10T08:31:26.7993124Z"
}
}
},
{
"id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector/providers/Microsoft.Security/standardAssignments/1f3afdf9-d0c9-4c3d-847f-89da613e70a9",
"name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8",
"type": "Microsoft.Security/standardAssignments",
"properties": {
"displayName": "Test exemption",
"description": "Exemption description",
"assignedStandard": {
"id": "/providers/Microsoft.Security/securityStandards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8"
},
"effect": "Exempt",
"expiresOn": "2022-05-01T19:50:47.083633Z",
"exemptionData": {
"exemptionCategory": "waiver",
"assignedAssessment": {
"assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f"
}
},
"metadata": {
"createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936",
"createdOn": "2022-11-10T08:31:26.7993124Z",
"lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936",
"lastUpdatedOn": "2022-11-10T08:31:26.7993124Z"
}
}
}
]
}Definitions
| Name | Description |
|---|---|
|
Assigned |
Describe the properties of a security assessment object reference (by key) |
|
Assigned |
Describe the properties of a of a standard assignments object reference |
|
attestation |
Attest category of this assignment |
|
Attestation |
Additional data about assignment that has Attest effect |
|
Attestation |
Describe the properties of a assignment attestation |
| effect |
Expected effect of this assignment (Audit/Exempt/Attest) |
|
Error |
The resource management error additional info. |
|
Error |
The error detail. |
|
Error |
Error response |
|
exemption |
Exemption category of this assignment |
|
Exemption |
Additional data about assignment that has Exempt effect |
|
Standard |
Security Assignment on a resource group over a given scope |
|
Standard |
The standard assignment metadata |
|
Standard |
Page of a standard assignment list |
AssignedAssessmentItem
Describe the properties of a security assessment object reference (by key)
| Name | Type | Description |
|---|---|---|
| assessmentKey |
string |
Unique key to a security assessment object |
AssignedStandardItem
Describe the properties of a of a standard assignments object reference
| Name | Type | Description |
|---|---|---|
| id |
string |
Full resourceId of the Microsoft.Security/standard object |
attestationComplianceState
Attest category of this assignment
| Value | Description |
|---|---|
| unknown | |
| compliant | |
| nonCompliant |
AttestationData
Additional data about assignment that has Attest effect
| Name | Type | Description |
|---|---|---|
| assignedAssessment |
Component item with key as applied to this standard assignment over the given scope |
|
| complianceDate |
string (date-time) |
Attestation compliance date |
| complianceState |
Attest category of this assignment |
|
| evidence |
Array of links to attestation evidence |
AttestationEvidence
Describe the properties of a assignment attestation
| Name | Type | Description |
|---|---|---|
| description |
string |
The description of the evidence |
| sourceUrl |
string |
The source url of the evidence |
effect
Expected effect of this assignment (Audit/Exempt/Attest)
| Value | Description |
|---|---|
| Audit | |
| Exempt | |
| Attest |
ErrorAdditionalInfo
The resource management error additional info.
| Name | Type | Description |
|---|---|---|
| info |
object |
The additional info. |
| type |
string |
The additional info type. |
ErrorDetail
The error detail.
| Name | Type | Description |
|---|---|---|
| additionalInfo |
The error additional info. |
|
| code |
string |
The error code. |
| details |
The error details. |
|
| message |
string |
The error message. |
| target |
string |
The error target. |
ErrorResponse
Error response
| Name | Type | Description |
|---|---|---|
| error |
The error object. |
exemptionCategory
Exemption category of this assignment
| Value | Description |
|---|---|
| waiver | |
| mitigated |
ExemptionData
Additional data about assignment that has Exempt effect
| Name | Type | Description |
|---|---|---|
| assignedAssessment |
Component item with key as applied to this standard assignment over the given scope |
|
| exemptionCategory |
Exemption category of this assignment |
StandardAssignment
Security Assignment on a resource group over a given scope
| Name | Type | Description |
|---|---|---|
| id |
string |
Resource Id |
| name |
string |
Resource name |
| properties.assignedStandard |
Standard item with key as applied to this standard assignment over the given scope |
|
| properties.attestationData |
Additional data about assignment that has Attest effect |
|
| properties.description |
string |
Description of the standardAssignment |
| properties.displayName |
string |
Display name of the standardAssignment |
| properties.effect |
Expected effect of this assignment (Audit/Exempt/Attest) |
|
| properties.excludedScopes |
string[] |
Excluded scopes, filter out the descendants of the scope (on management scopes) |
| properties.exemptionData |
Additional data about assignment that has Exempt effect |
|
| properties.expiresOn |
string (date-time) |
Expiration date of this assignment as a full ISO date |
| properties.metadata |
The standard assignment metadata. |
|
| type |
string |
Resource type |
StandardAssignmentMetadata
The standard assignment metadata
| Name | Type | Description |
|---|---|---|
| createdBy |
string |
Standard assignment Created by object id (GUID) |
| createdOn |
string (date-time) |
Standard assignment creation date |
| lastUpdatedBy |
string |
Standard assignment last updated by object id (GUID) |
| lastUpdatedOn |
string (date-time) |
Standard assignment last update date |
StandardAssignmentsList
Page of a standard assignment list
| Name | Type | Description |
|---|---|---|
| nextLink |
string |
The URI to fetch the next page |
| value |
Collection of standardAssignments in this page |