Version: 2.0.1 (preview)

Test-MtXspmEnabledPrivilegedUsersLinkedToDisabledIdentity

SYNOPSIS

Tests if enabled privileged users with assigned high privileged Entra ID roles or criticality level (<= 1) are linked to a disabled identity in Microsoft Defender XDR.

SYNTAX

Test-MtXspmEnabledPrivilegedUsersLinkedToDisabledIdentity [-ProgressAction <ActionPreference>]
 [<CommonParameters>]

DESCRIPTION

This function checks if any enabled privileged users with assigned high privileged Entra ID roles or criticality level (<= 1) are linked to a disabled identity in Microsoft Defender XDR. Having enabled privileged users linked to disabled identities can pose a security risk, as it may indicate orphaned privileged accounts that could be exploited by attackers.

EXAMPLES

EXAMPLE 1

Test-MtXspmEnabledPrivilegedUsersLinkedToDisabledIdentity

PARAMETERS

-ProgressAction

Type: ActionPreference
Parameter Sets: (All)
Aliases: proga

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

INPUTS

OUTPUTS

[bool] - Returns $true if no enabled privileged users are linked to disabled identities, otherwise returns $false.

NOTES

https://maester.dev/docs/commands/Test-MtXspmEnabledPrivilegedUsersLinkedToDisabledIdentity

SYNOPSIS​

SYNTAX​

DESCRIPTION​

EXAMPLES​

EXAMPLE 1​

PARAMETERS​

-ProgressAction​

CommonParameters​

INPUTS​

OUTPUTS​

[bool] - Returns $true if no enabled privileged users are linked to disabled identities, otherwise returns $false.​

NOTES​

RELATED LINKS​