Skip to main content
Version: 2.1.1-preview

EIDSCA.CR01 - Consent Framework - Admin Consent Request - Policy to enable or disable admin consent request feature.

Overviewā€‹

Defines if admin consent request feature is enabled or disabled

Test scriptā€‹

https://graph.microsoft.com/beta/policies/adminConsentRequestPolicy
.isEnabled -eq 'true'

MITRE ATT&CKā€‹

TacticTechniqueMitigation
TA0001 - Initial Access - Initial Access
TA0005 - Defense Evasion - Stealth
TA0006 - Credential Access - Credential Access
TA0008 - Lateral Movement - Lateral Movement		T1078 - Valid Accounts
T1528 - Steal Application Access Token
T1550 - Use Alternate Authentication Material
T1550.001 - Use Alternate Authentication Material: Application Access Token
T1566.002 - Phishing: Spearphishing Link		M1018 - User Account Management
M1017 - User Training

Test Metadataā€‹

FieldValue
Test IDEIDSCA.CR01
SeverityHigh
SuiteEntra ID SCA
CategoryGeneral
PowerShell testTest-MtEidscaCR01
TagsEIDSCA, EIDSCA.CR01

Sourceā€‹

  • Pester test: tests/EIDSCA/Test-EIDSCA.Generated.Tests.ps1
  • PowerShell source: powershell/internal/eidsca/Test-MtEidscaCR01.ps1