Version: 2.0.1 (preview)

Test-MtXspmPrivilegedUsersLinkedToIdentity

SYNOPSIS

Tests if privileged users with assigned high privileged Entra ID roles are linked to an identity.

SYNTAX

Test-MtXspmPrivilegedUsersLinkedToIdentity [-ProgressAction <ActionPreference>] [<CommonParameters>]

DESCRIPTION

This function checks if any enabled privileged users with assigned high privileged Entra ID roles are linked to an identity in Microsoft Defender XDR. Emergency access accounts defined in the Maester config under 'EmergencyAccessAccounts' are excluded from this test. Entra ID role members should be a separate account from the day-to-day user account to reduce the attack surface but also linked in Defender XDR for visibility and option to apply containment to all associated accounts in case of a identity compromise.

EXAMPLES

EXAMPLE 1

Test-MtXspmPrivilegedUsersLinkedToIdentity

PARAMETERS

-ProgressAction

Type: ActionPreference
Parameter Sets: (All)
Aliases: proga

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

INPUTS

OUTPUTS

[bool] - Returns $true if all sensitive privileged users are linked to an identity, $false if any are found not linked, $null if skipped or prerequisites not met.

NOTES

https://maester.dev/docs/commands/Test-MtXspmPrivilegedUsersLinkedToIdentity

SYNOPSIS​

SYNTAX​

DESCRIPTION​

EXAMPLES​

EXAMPLE 1​

PARAMETERS​

-ProgressAction​

CommonParameters​

INPUTS​

OUTPUTS​

[bool] - Returns $true if all sensitive privileged users are linked to an identity, $false if any are found not linked, $null if skipped or prerequisites not met.​

NOTES​

RELATED LINKS​