ITDR
Viewing the Entra ID Vulnerability Report
You can view the Entra ID vulnerability report for a scanned Entra ID tenant. On the Entra ID dashboard, you can select an Entra ID tenant and timestamp to view the posture report. The Entra ID vulnerability report shows issues for the identities, service principals, and configuration settings. The report enables you to analyze and remediate issues to maintain the security posture of your tenant.
The Entra ID vulnerability reports are permanently deleted when the retention policy period expires. To learn more, see Configuring a Retention Policy.
To view the Entra ID vulnerability report:
- Go to ITDR > Dashboard > Entra ID.
- On the Entra ID Dashboard:
- Select an Entra ID tenant from the Result for drop-down menu.
Select a timestamp from the scanned on drop-down menu.
The scan result for the Entra ID tenant appears.
Click View Report.
The vulnerability report for the Entra ID tenant appears with the following information:
- Issue: The vulnerability issue details.
- Description: The issue description.
- Type of Risk: The type of vulnerability risk (e.g., Best Practice Violations, Privilege Escalation, Hybrid Risk, Privilege Leak, etc.).
- Severity: The severity level of the vulnerability issue (e.g., Critical, High, Moderate, and Low).
Remediation: The remediation assessment (e.g., High, Moderate, and Easy).
You can download the report as an Excel file. You can also copy specific columns from the table.