MS Graph API - List Secure Score is returning no data

525 views Asked by At

I am trying to use MS Graph Security API to get Secure Score data from my newly created tenant. The tenant has been created on 16th July i.e. 5 days back. I can see the Secure Score within Security Center but there is no Identity related secure like Number of admins has to be less than 3, more than 1 etc.

If I try and use MS Graph Security API (List Secure Score), it is not returning any data.

{ "@odata.context": "https://graph.microsoft.com/beta/$metadata#Security/secureScores", "value": [] }

On the Secure Score Portal, it is giving me the below message

"Microsoft is calculating your Secure Score, which usually takes 2-4 days from when your tenant was created. Please check back later."

I have below questions if someone can help please -

  1. How do I enforce a secure score calculation for default security controls. I have enabled the default security controls today. ASC Defaults are enabled by default and I have added a few more Azure policies on top of it. My primary goal is to view the control scores using MS Graph Security API.

  2. How can i add more security controls to be added as part of secure score or is it done by default for all Azure Policies.

Sorry, If these are very basic questions but I tried looking for documentation but could not find any on this.

1

There are 1 answers

1
Erik Wahlstrom On

The Microsoft Secure Score Graph API and the Secure Score Portal both leverage the same infrastructure, so when one is returning data, the other should as well. In some cases the "2-4 days" can be MUCH longer. We are working on streamlining this.

WRT your two questions, you mention ASC (Azure Security Center) and Azure several times. I take it that you are interested in the Azure Secure Score. This is a separate product from Microsoft Secure Score. Currently ASC controls are not a part of Microsoft Secure Score. The MS Graph API you reference does not currently include ASC controls.