| title | description | author | ms.reviewer | ms.localizationpriority | ms.subservice | doc_type |
|---|---|---|---|---|---|---|
authorizationSystem resource type |
Represents a Microsoft Azure subscription, Amazon Web Services (AWS) account, or Google Cloud Platform (GCP) project that you've onboarded onto Microsoft Entra Permissions Management. |
mrudulahg01 |
ciem_pm |
medium |
entra-permissions-management |
resourcePageType |
Namespace: microsoft.graph
[!INCLUDE beta-disclaimer]
Represents a Microsoft Azure susbcription, Amazon Web Services (AWS) account, or Google Cloud Platform (GCP) project onboarded onto Microsoft Entra Permissions Management, Microsoft's cloud infrastructure entitlement management (CIEM) solution. Permissions Management discovers, remediates, and monitors the permissions and actions of identities in these platforms.
This object is read-only and is populated when you successfully onboard the platform onto Permissions Management.
The following resource types are derived from this resource:
- awsAuthorizationSystem resource type
- azureAuthorizationSystem resource type
- gcpAuthorizationSystem resource type
Inherits from entity.
| Method | Return type | Description |
|---|---|---|
| List | authorizationSystem collection | Get a list of the authorizationSystem objects and their properties. |
| Get | authorizationSystem | Read the properties and relationships of an authorizationSystem object. |
| Property | Type | Description |
|---|---|---|
| authorizationSystemId | String | ID of the authorization system retrieved from the customer cloud environment. Supports $filter(eq, contains) and $orderBy. |
| authorizationSystemName | String | Name of the authorization system detected after onboarding. Supports $filter(eq,contains) and $orderBy. |
| authorizationSystemType | String | The type of authorization system. Can be gcp, azure, or aws. Supports $filter(eq). |
| id | String | Unique identifier for the authorization system within Microsoft Entra Permissions Management. Inherited from entity. |
| Relationship | Type | Description |
|---|---|---|
| dataCollectionInfo | dataCollectionInfo | Defines how and whether Permissions Management collects data from the onboarded authorization system. Supports $filter (eq) as follows: $filter=dataCollectionInfo/entitlements/permissionsModificationCapability and $filter=dataCollectionInfo/entitlements/status. |
The following JSON representation shows the resource type.
{
"@odata.type": "#microsoft.graph.authorizationSystem",
"id": "String (identifier)",
"authorizationSystemId": "String",
"authorizationSystemName": "String",
"authorizationSystemType": "String"
}