icon-itdr.svg
ITDR

Viewing the Entra ID Vulnerability Report

You can view the Entra ID vulnerability report for a scanned Entra ID tenant. On the Entra ID dashboard, you can select an Entra ID tenant and timestamp to view the posture report. The Entra ID vulnerability report shows issues for the identities, service principals, and configuration settings. The report enables you to analyze and remediate issues to maintain the security posture of your tenant.

The Entra ID vulnerability reports are permanently deleted when the retention policy period expires. To learn more, see Configuring a Retention Policy.

To view the Entra ID vulnerability report:

  1. Go to ITDR > Dashboard > Entra ID.
  2. On the Entra ID Dashboard:
    1. Select an Entra ID tenant from the Result for drop-down menu.
    2. Select a timestamp from the scanned on drop-down menu.

      The scan result for the Entra ID tenant appears.

  3. Click View Report.

    The vulnerability report for the Entra ID tenant appears with the following information:

    • Issue: The vulnerability issue details.
    • Description: The issue description.
    • Type of Risk: The type of vulnerability risk (e.g., Best Practice Violations, Privilege Escalation, Hybrid Risk, Privilege Leak, etc.).
    • Severity: The severity level of the vulnerability issue (e.g., Critical, High, Moderate, and Low).
    • Remediation: The remediation assessment (e.g., High, Moderate, and Easy).

    You can download the report as an Excel file. You can also copy specific columns from the table.

Related Articles
About the Entra ID DashboardViewing the Entra ID Vulnerability ReportDownloading the Entra ID Vulnerability ReportDownloading the Zscaler ITDR Microsoft Entra ID Executive Summary ReportDownloading the Entra ID Delta ReportViewing the Entra ID Detailed Findings and Recommendations DetailsViewing the Top Vulnerable Entra ID IdentitiesViewing Affected Entra ID Identity DetailsViewing the Entra ID Issue Details Grouped by SeverityViewing Entra ID Issue Details Grouped by Risk TypeViewing the Entra ID Risk Reduction RoadmapViewing the Entra ID Issue Details Grouped by MITRE ATT&CK TechniquesRunning Remediation Actions for Microsoft Entra ID IssuesViewing Entra ID Remediation HistoryDeleting an Entra ID Scan Report