diff --git a/microsoft-graph.d.ts b/microsoft-graph.d.ts index c15baaf..bc42b58 100644 --- a/microsoft-graph.d.ts +++ b/microsoft-graph.d.ts @@ -482,7 +482,8 @@ export type AssociatedAssignmentPayloadType = | "deviceFirmwareConfigurationInterfacePolicy" | "resourceAccessPolicy" | "win32app" - | "deviceManagmentConfigurationAndCompliancePolicy"; + | "deviceManagmentConfigurationAndCompliancePolicy" + | "hardwareConfiguration"; export type AttachmentType = "file" | "item" | "reference"; export type AttackSimulationOperationType = "createSimualation" | "updateSimulation" | "unknownFutureValue"; export type AttendeeType = "required" | "optional" | "resource"; @@ -530,6 +531,15 @@ export type AuthenticationAttributeCollectionInputType = | "unknownFutureValue"; export type AuthenticationContextDetail = "required" | "previouslySatisfied" | "notApplicable" | "unknownFutureValue"; export type AuthenticationEventType = "tokenIssuanceStart" | "pageRenderStart" | "unknownFutureValue"; +export type AuthenticationFailureReasonCode = + | "incomplete" + | "denied" + | "systemFailure" + | "badRequest" + | "other" + | "unknownFutureValue" + | "userError" + | "configError"; export type AuthenticationMethodFeature = | "ssprRegistered" | "ssprEnabled" @@ -919,11 +929,21 @@ export type CloudAppSecuritySessionControlType = | "monitorOnly" | "blockDownloads" | "unknownFutureValue"; +export type CloudCertificationAuthorityKeyPlatformType = + | "unknown" + | "software" + | "hardwareSecurityModule" + | "unknownFutureValue"; export type CloudPcAuditActivityOperationType = "create" | "delete" | "patch" | "unknownFutureValue"; export type CloudPcAuditActivityResult = "success" | "clientError" | "failure" | "timeout" | "unknownFutureValue"; export type CloudPcAuditActorType = "itPro" | "application" | "partner" | "unknownFutureValue"; export type CloudPcAuditCategory = "cloudPC" | "unknownFutureValue"; export type CloudPcBulkActionStatus = "pending" | "succeeded" | "failed" | "unknownFutureValue"; +export type CloudPCConnectionQualityReportType = + | "remoteConnectionQualityReport" + | "regionalConnectionQualityTrendReport" + | "regionalConnectionQualityInsightsReport" + | "unknownFutureValue"; export type CloudPcConnectivityEventResult = "unknown" | "success" | "failure" | "unknownFutureValue"; export type CloudPcConnectivityEventType = | "unknown" @@ -1097,7 +1117,9 @@ export type CloudPcRegionGroup = | "unknownFutureValue" | "norway" | "switzerland" - | "southKorea"; + | "southKorea" + | "middleEast" + | "mexico"; export type CloudPcRemoteActionName = | "unknown" | "restart" @@ -1130,7 +1152,10 @@ export type CloudPcReportName = | "cloudPcUsageCategoryReports" | "crossRegionDisasterRecoveryReport" | "performanceTrendReport" - | "inaccessibleCloudPcTrendReport"; + | "inaccessibleCloudPcTrendReport" + | "regionalConnectionQualityTrendReport" + | "regionalConnectionQualityInsightsReport" + | "remoteConnectionQualityReport"; export type CloudPcResizeValidationCode = | "success" | "cloudPcNotFound" @@ -1618,6 +1643,7 @@ export type DetectedAppPlatformType = | "androidWorkProfile" | "androidDedicatedAndFullyManaged" | "unknownFutureValue"; +export type DeviceActionCategory = "single" | "bulk"; export type DeviceAndAppManagementAssignmentFilterType = "none" | "include" | "exclude"; export type DeviceAndAppManagementAssignmentSource = "direct" | "policySets"; export type DeviceAppManagementTaskCategory = "unknown" | "advancedThreatProtection"; @@ -3115,7 +3141,7 @@ export type MobileAppContentFileUploadState = | "commitFilePending" | "commitFileFailed" | "commitFileTimedOut"; -export type MobileAppDependencyType = "detect" | "autoInstall"; +export type MobileAppDependencyType = "detect" | "autoInstall" | "unknownFutureValue"; export type MobileAppIntent = | "available" | "notAvailable" @@ -3125,8 +3151,8 @@ export type MobileAppIntent = | "availableInstallWithoutEnrollment" | "exclude"; export type MobileAppPublishingState = "notPublished" | "processing" | "published"; -export type MobileAppRelationshipType = "child" | "parent"; -export type MobileAppSupersedenceType = "update" | "replace"; +export type MobileAppRelationshipType = "child" | "parent" | "unknownFutureValue"; +export type MobileAppSupersedenceType = "update" | "replace" | "unknownFutureValue"; export type MobileThreatDefensePartnerPriority = | "defenderOverThirdPartyPartner" | "thirdPartyPartnerOverDefender" @@ -3510,7 +3536,9 @@ export type PlatformType = | "windows10X" | "windows10" | "linux" - | "unknownFutureValue"; + | "unknownFutureValue" + | "androidEnterprise" + | "aosp"; export type PlayPromptCompletionReason = | "unknown" | "completedSuccessfully" @@ -7433,17 +7461,17 @@ export interface AdminWindows extends Entity { updates?: NullableOption; } export interface AdminWindowsUpdates extends Entity { - // Catalog of content that can be approved for deployment by the deployment service. Read-only. + // Catalog of content that can be approved for deployment by Windows Autopatch. Read-only. catalog?: NullableOption; // The set of updatableAsset resources to which a deployment can apply. deploymentAudiences?: NullableOption; - // Deployments created using the deployment service. + // Deployments created using Windows Autopatch. deployments?: NullableOption; // A collection of Windows products. products?: NullableOption; // Service connections to external resources such as analytics workspaces. resourceConnections?: NullableOption; - // Assets registered with the deployment service that can receive updates. + // Assets registered with Windows Autopatch that can receive updates. updatableAssets?: NullableOption; // A collection of policies for approving the deployment of different content to an audience over time. updatePolicies?: NullableOption; @@ -9641,8 +9669,6 @@ export interface AndroidScepCertificateProfile extends AndroidCertificateProfile managedDeviceCertificateStates?: NullableOption; } export interface AndroidStoreApp extends MobileApp { - // The Identity Name. This property is read-only. - appIdentifier?: NullableOption; // The Android app store URL. appStoreUrl?: NullableOption; // The value for the minimum applicable operating system. @@ -11299,6 +11325,11 @@ export interface AuthenticationEventsPolicy extends Entity { // A list of applicable actions to be taken on sign-up. onSignupStart?: NullableOption; } +export interface AuthenticationFailure extends Entity { + count?: number; + reason?: string; + reasonCode?: AuthenticationFailureReasonCode; +} export interface AuthenticationFlowsPolicy extends Entity { // Inherited property. A description of the policy. This property isn't a key. Optional. Read-only. description?: NullableOption; @@ -11402,6 +11433,8 @@ export interface AuthenticationsMetric extends Entity { appid?: NullableOption; // The number of authentication requests made in the specified period. Supports $filter (eq). attemptsCount?: number; + authFlow?: NullableOption; + browser?: NullableOption; // The location where the customers authenticated from. Supports $filter (eq). country?: NullableOption; // The date of the user insight. @@ -11412,6 +11445,7 @@ export interface AuthenticationsMetric extends Entity { os?: NullableOption; // Number of successful authentication requests. Supports $filter (eq). successCount?: number; + failures?: NullableOption; } export interface AuthenticationStrengthPolicy extends Entity { // A collection of authentication method modes that are required be used to satify this authentication strength. @@ -12644,6 +12678,15 @@ export interface CallActivityStatistics extends ActivityStatistics { */ afterHours?: string; } +export interface CallAiInsight extends Entity { + actionItems?: NullableOption; + callId?: NullableOption; + contentCorrelationId?: NullableOption; + createdDateTime?: NullableOption; + endDateTime?: NullableOption; + meetingNotes?: NullableOption; + viewpoint?: NullableOption; +} export interface CallEvent extends Entity { callEventType?: NullableOption; eventDateTime?: NullableOption; @@ -12923,7 +12966,7 @@ export interface ChatMessage extends Entity { lastModifiedDateTime?: NullableOption; // Locale of the chat message set by the client. Always set to en-us. locale?: string; - // List of entities mentioned in the chat message. Supported entities are: user, bot, team, channel, and tag. + // List of entities mentioned in the chat message. Supported entities are: user, bot, team, channel, chat, and tag. mentions?: NullableOption; /** * List of activity history of a message item, including modification time and actions, such as reactionAdded, @@ -13082,7 +13125,7 @@ export interface CloudPC extends Entity { * The disaster recovery status of the Cloud PC, including the primary region, secondary region, and capability type. The * default value is null that indicates that the disaster recovery setting is disabled. To receive a response with the * disasterRecoveryCapability property, $select and $filter it by disasterRecoveryCapability/{subProperty} in the request - * URL. For more details, see Example 4: List Cloud PCs filtered by disaster recovery capability type. Read-only. + * URL. For more information, see Example 4: List Cloud PCs filtered by disaster recovery capability type. Read-only. */ disasterRecoveryCapability?: NullableOption; /** @@ -13233,6 +13276,8 @@ export interface CloudPcBulkAction extends Entity { status?: NullableOption; } // tslint:disable-next-line: no-empty-interface +export interface CloudPcBulkCreateSnapshot extends CloudPcBulkAction {} +// tslint:disable-next-line: no-empty-interface export interface CloudPcBulkDisasterRecoveryFailback extends CloudPcBulkAction {} // tslint:disable-next-line: no-empty-interface export interface CloudPcBulkDisasterRecoveryFailover extends CloudPcBulkAction {} @@ -13267,6 +13312,10 @@ export interface CloudPcBulkRestore extends CloudPcBulkAction { */ timeRange?: RestoreTimeRange; } +export interface CloudPcBulkSetReviewStatus extends CloudPcBulkAction { + // The new review status of the Cloud PC. Read-only. + reviewStatus?: CloudPcReviewStatus; +} // tslint:disable-next-line: no-empty-interface export interface CloudPcBulkTroubleshoot extends CloudPcBulkAction {} export interface CloudPCConnectivityIssue extends Entity { @@ -13321,6 +13370,8 @@ export interface CloudPcDeviceImage extends Entity { * default value is unknown. Read-only. */ osStatus?: NullableOption; + // The operating system version of this image. For example, 10.0.22000.296. Read-only. + osVersionNumber?: NullableOption; scopeIds?: NullableOption; /** * The unique identifier (ID) of the source image resource on Azure. The required ID format is: @@ -13361,9 +13412,10 @@ export interface CloudPcExportJob extends Entity { * The report name. The possible values are: remoteConnectionHistoricalReports, dailyAggregatedRemoteConnectionReports, * totalAggregatedRemoteConnectionReports, sharedUseLicenseUsageReport, sharedUseLicenseUsageRealTimeReport, * unknownFutureValue, noLicenseAvailableConnectivityFailureReport, frontlineLicenseUsageReport, - * frontlineLicenseUsageRealTimeReport, remoteConnectionQualityReports, inaccessibleCloudPcReports, - * rawRemoteConnectionReports, cloudPcUsageCategoryReports, crossRegionDisasterRecoveryReport. You must use the Prefer: - * include-unknown-enum-members request header to get the following values in this evolvable enum: + * frontlineLicenseUsageRealTimeReport, remoteConnectionQualityReports, inaccessibleCloudPcReports, actionStatusReport, + * rawRemoteConnectionReports, cloudPcUsageCategoryReports, crossRegionDisasterRecoveryReport, + * regionalConnectionQualityTrendReport, regionalConnectionQualityInsightsReport, remoteConnectionQualityReport. You must + * use the Prefer: include-unknown-enum-members request header to get the following values in this evolvable enum: * noLicenseAvailableConnectivityFailureReport, frontlineLicenseUsageReport, frontlineLicenseUsageRealTimeReport, * remoteConnectionQualityReports, inaccessibleCloudPcReports, rawRemoteConnectionReports, cloudPcUsageCategoryReports, * crossRegionDisasterRecoveryReport. @@ -13435,6 +13487,8 @@ export interface CloudPcGalleryImage extends Entity { offerDisplayName?: NullableOption; // The offer name of this gallery image that is passed to ARM to retrieve the image resource. Read-only. offerName?: NullableOption; + // The operating system version of this gallery image. For example, 10.0.22000.296. Read-only. + osVersionNumber?: NullableOption; /** * The publisher name of this gallery image that is passed to ARM to retrieve the image resource. Read-only. The publisher * property is deprecated and will stop returning data on January 31, 2024. Going forward, use the publisherName property. @@ -13602,6 +13656,11 @@ export interface CloudPcProvisioningPolicy extends Entity { * as starterManaged. Supports $select. */ autopatch?: NullableOption; + /** + * The specific settings for Windows Autopilot that enable Windows 365 customers to experience it on Cloud PC. Supports + * $select. + */ + autopilotConfiguration?: NullableOption; // The display name of the Cloud PC group that the Cloud PCs reside in. Read-only. cloudPcGroupDisplayName?: NullableOption; /** @@ -13772,9 +13831,9 @@ export interface CloudPcSupportedRegion extends Entity { * when provisioning a Cloud PC; however, the Cloud PC is put under one of the regions under the group based on resource * capacity. The region with more quota is chosen. Possible values are: default, australia, canada, usCentral, usEast, * usWest, france, germany, europeUnion, unitedKingdom, japan, asia, india, southAmerica, euap, usGovernment, - * usGovernmentDOD, unknownFutureValue, norway, switzerland,southKorea. You must use the Prefer: - * include-unknown-enum-members request header to get the following value(s) in this evolvable enum: norway, - * switzerland,southKorea. Read-only. + * usGovernmentDOD, unknownFutureValue, norway, switzerland,southKorea, middleEast, mexico. You must use the Prefer: + * include-unknown-enum-members request header to get the following values in this evolvable enum: norway, + * switzerland,southKorea, middleEast, mexico. Read-only. */ regionGroup?: CloudPcRegionGroup; /** @@ -13812,6 +13871,7 @@ export interface CloudPcUserSetting extends Entity { * the setting to true. If the local admin option is enabled, the end user can be an admin of the Cloud PC device. */ localAdminEnabled?: NullableOption; + // Defines the setting of the Cloud PC notification prompts for the Cloud PC user. notificationSetting?: NullableOption; /** * Indicates whether an end user is allowed to reset their Cloud PC. When true, the user is allowed to reset their Cloud @@ -15961,6 +16021,8 @@ export interface DeviceAppManagement extends Entity { mobileAppCategories?: NullableOption; // The Managed Device Mobile Application Configurations. mobileAppConfigurations?: NullableOption; + // List mobileAppRelationship objects for mobile applications. + mobileAppRelationships?: NullableOption; // The mobile apps. mobileApps?: NullableOption; // The PolicySet of Policies and Applications @@ -16158,7 +16220,7 @@ export interface DeviceCompliancePolicySettingStateSummary extends Entity { notApplicableDeviceCount?: number; /** * Setting platform. Possible values are: android, androidForWork, iOS, macOS, windowsPhone81, windows81AndLater, - * windows10AndLater, androidWorkProfile, windows10XProfile, androidAOSP, all. + * windows10AndLater, androidWorkProfile, windows10XProfile, androidAOSP, linux, all. */ platformType?: PolicyPlatformType; // Number of remediated devices @@ -16474,17 +16536,11 @@ export interface DeviceConfigurationProfile extends Entity { createdDateTime?: string; // The date and time the entity was last modified. lastModifiedDateTime?: string; - /** - * Platform Type. Possible values are: none, android, iOS, macOS, windows10X, windows10, linux, unknownFutureValue, - * androidEnterprise, aosp. - */ + // Platform Type platformType?: PlatformType; // Profile name profileName?: NullableOption; - /** - * Profile Type. Possible values are: settingsCatalog, administrativeTemplates, importedADMXTemplates, oemAppConfig, - * hardwareConfig, dcV1EndpointProtection, dcV1DeviceRestrictions. - */ + // Profile Type profileType?: ProfileType; // The list of scope tags for the configuration. roleScopeTagIds?: NullableOption; @@ -17159,9 +17215,10 @@ export interface DeviceManagement extends Entity { */ hardwarePasswordDetails?: NullableOption; /** - * Intune will provide customer the ability to configure hardware/bios settings on the enrolled windows 10 Azure Active - * Directory joined devices. Starting from June, 2024 (Intune Release 2406), this type will no longer be supported and - * will be marked as deprecated + * Intune will provide customer the ability to configure BIOS configuration settings on the enrolled Windows 10 and + * Windows 11 Microsoft Entra joined devices. Starting from June, 2024, customers should start using + * hardwarePasswordDetail resource type - Microsoft Graph beta | Microsoft Learn. HardwarePasswordInfo will be marked as + * deprecated with Intune Release 2409 */ hardwarePasswordInfo?: NullableOption; // The imported device identities. @@ -17300,7 +17357,10 @@ export interface DeviceManagement extends Entity { userExperienceAnalyticsBatteryHealthRuntimeDetails?: NullableOption; // User experience analytics categories userExperienceAnalyticsCategories?: NullableOption; - // User experience analytics device metric history + /** + * User experience analytics device metric history. The report will be retired on December 31, 2024. You can start using + * the Cloud PC connection quality report now via https://go.microsoft.com/fwlink/?linkid=2283835. + */ userExperienceAnalyticsDeviceMetricHistory?: NullableOption; // User experience analytics device performance userExperienceAnalyticsDevicePerformance?: NullableOption; @@ -17336,7 +17396,10 @@ export interface DeviceManagement extends Entity { userExperienceAnalyticsNotAutopilotReadyDevice?: NullableOption; // User experience analytics overview userExperienceAnalyticsOverview?: NullableOption; - // User experience analytics remote connection + /** + * User experience analytics remote connection. The report will be retired on December 31, 2024. You can start using the + * Cloud PC connection quality report now via https://go.microsoft.com/fwlink/?linkid=2283835. + */ userExperienceAnalyticsRemoteConnection?: NullableOption; // User experience analytics resource performance userExperienceAnalyticsResourcePerformance?: NullableOption; @@ -17623,9 +17686,9 @@ export interface DeviceManagementConfigurationCategory extends Entity { technologies?: DeviceManagementConfigurationTechnologies; } export interface DeviceManagementConfigurationChoiceSettingCollectionDefinition extends DeviceManagementConfigurationChoiceSettingDefinition { - // Maximum number of choices in the collection + // Maximum number of choices in the collection. Valid values 1 to 100 maximumCount?: number; - // Minimum number of choices in the collection + // Minimum number of choices in the collection. Valid values 1 to 100 minimumCount?: number; } export interface DeviceManagementConfigurationChoiceSettingDefinition extends DeviceManagementConfigurationSettingDefinition { @@ -17746,19 +17809,19 @@ export interface DeviceManagementConfigurationSetting extends Entity { export interface DeviceManagementConfigurationSettingDefinition extends Entity { // Read/write access mode of the setting. Possible values are: none, add, copy, delete, get, replace, execute. accessTypes?: DeviceManagementConfigurationSettingAccessTypes; - // Details which device setting is applicable on. Supports: $filters. + // Details which device setting is applicable on applicability?: NullableOption; // Base CSP Path baseUri?: NullableOption; - // Specify category in which the setting is under. Support $filters. + // Specifies the area group under which the setting is configured in a specified configuration service provider (CSP) categoryId?: NullableOption; - // Description of the setting. + // Description of the item description?: NullableOption; - // Name of the setting. For example: Allow Toast. + // Display name of the item displayName?: NullableOption; - // Help text of the setting. Give more details of the setting. + // Help text of the item helpText?: NullableOption; - // List of links more info for the setting can be found at. + // List of links more info for the setting can be found at infoUrls?: NullableOption; // Tokens which to search settings on keywords?: NullableOption; @@ -17770,36 +17833,28 @@ export interface DeviceManagementConfigurationSettingDefinition extends Entity { offsetUri?: NullableOption; // List of referred setting information. referredSettingInformationList?: NullableOption; - // Root setting definition id if the setting is a child setting. + // Root setting definition if the setting is a child setting. rootDefinitionId?: NullableOption; - /** - * Indicate setting type for the setting. Possible values are: configuration, compliance, reusableSetting. Each setting - * usage has separate API end-point to call. Possible values are: none, configuration, compliance, unknownFutureValue, - * inventory. - */ + // Setting type, for example, configuration and compliance. Possible values are: none, configuration, compliance. settingUsage?: DeviceManagementConfigurationSettingUsage; /** * Setting control type representation in the UX. Possible values are: default, dropdown, smallTextBox, largeTextBox, - * toggle, multiheaderGrid, contextPane. Possible values are: default, dropdown, smallTextBox, largeTextBox, toggle, - * multiheaderGrid, contextPane, unknownFutureValue. + * toggle, multiheaderGrid, contextPane. */ uxBehavior?: DeviceManagementConfigurationControlType; // Item Version version?: NullableOption; - /** - * Setting visibility scope to UX. Possible values are: none, settingsCatalog, template. Possible values are: none, - * settingsCatalog, template, unknownFutureValue, inventoryCatalog. - */ + // Setting visibility scope to UX. Possible values are: none, settingsCatalog, template. visibility?: DeviceManagementConfigurationSettingVisibility; } export interface DeviceManagementConfigurationSettingGroupCollectionDefinition extends DeviceManagementConfigurationSettingGroupDefinition { - // Maximum number of setting group count in the collection. Valid values 1 to 100 + // Maximum number of setting group count in the collection maximumCount?: number; - // Minimum number of setting group count in the collection. Valid values 1 to 100 + // Minimum number of setting group count in the collection minimumCount?: number; } export interface DeviceManagementConfigurationSettingGroupDefinition extends DeviceManagementConfigurationSettingDefinition { - // Dependent child settings to this group of settings + // Dependent child settings to this group of settings. childIds?: NullableOption; // List of child settings that depend on this setting dependedOnBy?: NullableOption; @@ -17813,9 +17868,9 @@ export interface DeviceManagementConfigurationSettingTemplate extends Entity { settingDefinitions?: NullableOption; } export interface DeviceManagementConfigurationSimpleSettingCollectionDefinition extends DeviceManagementConfigurationSimpleSettingDefinition { - // Maximum number of simple settings in the collection + // Maximum number of simple settings in the collection. Valid values 1 to 100 maximumCount?: number; - // Minimum number of simple settings in the collection + // Minimum number of simple settings in the collection. Valid values 1 to 100 minimumCount?: number; } export interface DeviceManagementConfigurationSimpleSettingDefinition extends DeviceManagementConfigurationSettingDefinition { @@ -18664,24 +18719,25 @@ export interface Domain extends Entity { */ supportedServices?: string[]; /** - * The objects such as users and groups that reference the domain ID. Read-only, Nullable. Supports $expand and $filter by - * the OData type of objects returned. For example, /domains/{domainId}/domainNameReferences/microsoft.graph.user and + * The objects such as users and groups that reference the domain ID. Read-only, Nullable. Does not support $expand. + * Supports $filter by the OData type of objects returned. For example, + * /domains/{domainId}/domainNameReferences/microsoft.graph.user and * /domains/{domainId}/domainNameReferences/microsoft.graph.group. */ domainNameReferences?: NullableOption; - // Domain settings configured by customer when federated with Microsoft Entra ID. Supports $expand. + // Domain settings configured by customer when federated with Microsoft Entra ID. Does not support $expand. federationConfiguration?: NullableOption; // Root domain of a subdomain. Read-only, Nullable. Supports $expand. rootDomain?: NullableOption; /** * DNS records the customer adds to the DNS zone file of the domain before the domain can be used by Microsoft Online - * services. Read-only, Nullable. Supports $expand. + * services. Read-only, Nullable. Does not support $expand. */ serviceConfigurationRecords?: NullableOption; sharedEmailDomainInvitations?: NullableOption; /** * DNS records that the customer adds to the DNS zone file of the domain before the customer can complete domain ownership - * verification with Microsoft Entra ID. Read-only, Nullable. Supports $expand. + * verification with Microsoft Entra ID. Read-only, Nullable. Does not support $expand. */ verificationDnsRecords?: NullableOption; } @@ -18766,7 +18822,7 @@ export interface Drive extends BaseItem { // Optional. Information about the drive's storage space quota. Read-only. quota?: NullableOption; sharePointIds?: NullableOption; - // If present, indicates that this is a system-managed drive. Read-only. + // If present, indicates that it's a system-managed drive. Read-only. system?: NullableOption; // The list of recent activities that took place under this drive. activities?: NullableOption; @@ -19142,7 +19198,7 @@ export interface EducationClass extends Entity { * Possible values are: sis, lms, or manual. */ externalSource?: NullableOption; - // The name of the external source this resources was generated from. + // The name of the external source from which this resource was generated. externalSourceDetail?: NullableOption; // Grade level of the class. grade?: NullableOption; @@ -19328,6 +19384,11 @@ export interface EducationSchool extends EducationOrganization { users?: NullableOption; } export interface EducationSubmission extends Entity { + /** + * The unique identifier for the assignment with which this submission is associated. A submission is always associated + * with one and only one assignment. + */ + assignmentId?: NullableOption; // The user that marked the submission as excused. excusedBy?: NullableOption; /** @@ -19336,7 +19397,9 @@ export interface EducationSubmission extends Entity { * 2014-01-01T00:00:00Z. */ excusedDateTime?: NullableOption; + // The identities of those who modified the submission. lastModifiedBy?: NullableOption; + // The date and time the submission was modified. lastModifiedDateTime?: NullableOption; // User who moved the status of this submission to reassigned. reassignedBy?: NullableOption; @@ -19357,9 +19420,9 @@ export interface EducationSubmission extends Entity { */ returnedDateTime?: NullableOption; /** - * Read-only. Possible values are: working, submitted, returned, unknownFutureValue, reassigned, and excused. Note that - * you must use the Prefer: include-unknown-enum-members request header to get the following values in this evolvable - * enum: reassigned, and excused. + * Read-only. Possible values are: working, submitted, returned, unknownFutureValue, reassigned, and excused. You must use + * the Prefer: include-unknown-enum-members request header to get the following values in this evolvable enum: reassigned, + * and excused. */ status?: NullableOption; // User who moved the resource into the submitted state. @@ -19627,6 +19690,11 @@ export interface EmbeddedSIMDeviceState extends Entity { // Username which the subscription was provisioned to e.g. joe@contoso.com userName?: NullableOption; } +export interface EmergencyCallEvent extends CallEvent { + callerInfo?: NullableOption; + emergencyNumberDialed?: NullableOption; + policyName?: NullableOption; +} export interface Employee { address?: NullableOption; birthDate?: NullableOption; @@ -20536,19 +20604,15 @@ export interface FileStorageContainer extends Entity { // The display name of the fileStorageContainer. Read-write. displayName?: string; externalGroupId?: NullableOption; - /** - * Indicates whether versioning is enabled for the fileStorageContainer. The setting is applicable to all items in the - * fileStorageContainer. Read-Write. - */ isItemVersioningEnabled?: NullableOption; - // Maximum number of major versions allowed for items in the fileStorageContainer. Read-write. itemMajorVersionLimit?: NullableOption; // Indicates the lock state of the fileStorageContainer. The possible values are unlocked and lockedReadOnly. Read-only. lockState?: NullableOption; // List of users who own the fileStorageContainer. Read-only. owners?: NullableOption; - // Ownership type of the fileStorageContainer.The possible values are: tenantOwned. Read-only. + // Ownership type of the fileStorageContainer. The possible values are: tenantOwned. Read-only. ownershipType?: NullableOption; + // Settings associated with a fileStorageContainer. Read-write. settings?: FileStorageContainerSettings; /** * Status of the fileStorageContainer. Containers are created as inactive and require activation. Inactive containers are @@ -20565,7 +20629,7 @@ export interface FileStorageContainer extends Entity { drive?: NullableOption; /** * The set of permissions for users in the fileStorageContainer. The permission for each user is set by the roles - * property. The possible values are 'reader', 'writer', 'manager', and 'owner'. Read-write. + * property. The possible values are reader, writer, manager, and owner. Read-write. */ permissions?: NullableOption; // Recycle bin of the fileStorageContainer. Read-only. @@ -21186,9 +21250,12 @@ export interface Group extends DirectoryObject { membersWithLicenseErrors?: NullableOption; onenote?: NullableOption; /** - * The owners of the group who can be users or service principals. Nullable. If this property isn't specified when - * creating a Microsoft 365 group, the calling user is automatically assigned as the group owner. Supports $filter - * (/$count eq 0, /$count ne 0, /$count eq 1, /$count ne 1); Supports $expand including nested $select. For example, + * The owners of the group who can be users or service principals. Limited to 100 owners. Nullable. If this property isn't + * specified when creating a Microsoft 365 group the calling user (admin or non-admin) is automatically assigned as the + * group owner. A non-admin user can't explicitly add themselves to this collection when they're creating the group. For + * more information, see the related known issue. For security groups, the admin user isn't automatically added to this + * collection. For more information, see the related known issue. Supports $filter (/$count eq 0, /$count ne 0, /$count eq + * 1, /$count ne 1); Supports $expand including nested $select. For example, * /groups?$filter=startsWith(displayName,'Role')&$select=id,displayName&$expand=owners($select=id,userPrincipalName,displayName). */ owners?: NullableOption; @@ -22264,6 +22331,8 @@ export interface InternalDomainFederation extends SamlOrWsFedProvider { * federation service certificate has been updated. */ nextSigningCertificate?: NullableOption; + // URI that clients are redirected to for resetting their password. + passwordResetUri?: NullableOption; /** * Sets the preferred behavior for the sign-in prompt. The possible values are: translateToFreshPasswordAuthentication, * nativeSupport, disabled, unknownFutureValue. @@ -23343,11 +23412,7 @@ export interface IosLobAppProvisioningConfiguration extends Entity { description?: NullableOption; // Admin provided name of the device configuration. displayName?: string; - /** - * Optional profile expiration date and time. The Timestamp type represents date and time information using ISO 8601 - * format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 would look like this: - * '2014-01-01T00:00:00Z'. Returned by default. - */ + // Optional profile expiration date and time. expirationDateTime?: NullableOption; // DateTime the object was last modified. lastModifiedDateTime?: string; @@ -23359,10 +23424,7 @@ export interface IosLobAppProvisioningConfiguration extends Entity { roleScopeTagIds?: NullableOption; // Version of the device configuration. version?: number; - /** - * The associated group assignments for IosLobAppProvisioningConfiguration, this determines which devices/users the IOS - * LOB app provisioning conifguration will be targeted to. - */ + // The associated group assignments for IosLobAppProvisioningConfiguration. assignments?: NullableOption; // The list of device installation states for this mobile app configuration. deviceStatuses?: NullableOption; @@ -25836,7 +25898,7 @@ export interface ManagedDevice extends Entity { deviceFirmwareConfigurationInterfaceManaged?: boolean; // The device health attestation state. This property is read-only. deviceHealthAttestationState?: NullableOption; - // Name of the device. This property is read-only. + // Name of the device. Supports $filter operator 'eq' and 'contains'. This property is read-only. deviceName?: NullableOption; /** * Device registration state. This property is read-only. Possible values are: notRegistered, registered, revoked, @@ -26969,9 +27031,9 @@ export interface MicrosoftTunnelSite extends Entity { microsoftTunnelServers?: NullableOption; } export interface MobileApp extends Entity { - // The date and time the app was created. This property is read-only. + // The date and time the app was created. createdDateTime?: string; - // The total number of dependencies the child app has. This property is read-only. + // The total number of dependencies the child app has. dependentAppCount?: number; // The description of the app. description?: NullableOption; @@ -26981,13 +27043,13 @@ export interface MobileApp extends Entity { displayName?: NullableOption; // The more information Url. informationUrl?: NullableOption; - // The value indicating whether the app is assigned to at least one group. This property is read-only. + // The value indicating whether the app is assigned to at least one group. isAssigned?: boolean; // The value indicating whether the app is marked as featured by the admin. isFeatured?: boolean; // The large icon, to be displayed in the app details and used for upload of the icon. largeIcon?: NullableOption; - // The date and time the app was last modified. This property is read-only. + // The date and time the app was last modified. lastModifiedDateTime?: string; // Notes for the app. notes?: NullableOption; @@ -26998,8 +27060,8 @@ export interface MobileApp extends Entity { // The publisher of the app. publisher?: NullableOption; /** - * The publishing state for the app. The app cannot be assigned unless the app is published. This property is read-only. - * Possible values are: notPublished, processing, published. + * The publishing state for the app. The app cannot be assigned unless the app is published. Possible values are: + * notPublished, processing, published. */ publishingState?: MobileAppPublishingState; // List of scope tag ids for this mobile app. @@ -27008,13 +27070,13 @@ export interface MobileApp extends Entity { supersededAppCount?: number; // The total number of apps this app directly or indirectly supersedes. This property is read-only. supersedingAppCount?: number; - // The upload state. Possible values are: 0 - Not Ready, 1 - Ready, 2 - Processing. This property is read-only. + // The upload state. uploadState?: number; // The list of group assignments for this mobile app. assignments?: NullableOption; // The list of categories for this app. categories?: NullableOption; - // The set of direct relationships for this app. + // List of relationships for this mobile app. relationships?: NullableOption; } export interface MobileAppAssignment extends Entity { @@ -27124,11 +27186,14 @@ export interface MobileAppContentFile extends Entity { uploadState?: MobileAppContentFileUploadState; } export interface MobileAppDependency extends MobileAppRelationship { - // The type of dependency relationship between the parent and child apps. Possible values are: detect, autoInstall. + /** + * The type of dependency relationship between the parent and child apps. Possible values are: detect, autoInstall. + * Read-Only. Possible values are: detect, autoInstall, unknownFutureValue. + */ dependencyType?: MobileAppDependencyType; - // The total number of apps that directly or indirectly depend on the parent app. This property is read-only. + // The total number of apps that directly or indirectly depend on the parent app. Read-Only. This property is read-only. dependentAppCount?: number; - // The total number of apps the child app directly or indirectly depends on. This property is read-only. + // The total number of apps the child app directly or indirectly depends on. Read-Only. This property is read-only. dependsOnAppCount?: number; } export interface MobileAppInstallStatus extends Entity { @@ -27223,26 +27288,39 @@ export interface MobileAppProvisioningConfigGroupAssignment extends Entity { targetGroupId?: NullableOption; } export interface MobileAppRelationship extends Entity { - // The target mobile app's display name. This property is read-only. + /** + * The display name of the app that is the target of the mobile app relationship entity. Read-Only. This property is + * read-only. + */ targetDisplayName?: NullableOption; - // The target mobile app's display version. This property is read-only. + /** + * The display version of the app that is the target of the mobile app relationship entity. Read-Only. This property is + * read-only. + */ targetDisplayVersion?: NullableOption; - // The target mobile app's app id. + // App ID of the app that is the target of the mobile app relationship entity. Read-Only targetId?: NullableOption; - // The target mobile app's publisher. This property is read-only. + /** + * The publisher of the app that is the target of the mobile app relationship entity. Read-Only. This property is + * read-only. + */ targetPublisher?: NullableOption; /** - * The type of relationship indicating whether the target is a parent or child. This property is read-only. Possible - * values are: child, parent. + * The type of relationship indicating whether the target application of a relationship is a parent or child in the + * relationship. Possible values are: parent, child. Read-Only. This property is read-only. Possible values are: child, + * parent, unknownFutureValue. */ targetType?: MobileAppRelationshipType; } export interface MobileAppSupersedence extends MobileAppRelationship { - // The total number of apps directly or indirectly superseded by the child app. This property is read-only. + // The total number of apps directly or indirectly superseded by the child app. Read-Only. This property is read-only. supersededAppCount?: number; - // The supersedence relationship type between the parent and child apps. Possible values are: update, replace. + /** + * The supersedence relationship type between the parent and child apps. Possible values are: update, replace. Read-Only. + * Possible values are: update, replace, unknownFutureValue. + */ supersedenceType?: MobileAppSupersedenceType; - // The total number of apps directly or indirectly superseding the parent app. This property is read-only. + // The total number of apps directly or indirectly superseding the parent app. Read-Only. This property is read-only. supersedingAppCount?: number; } export interface MobileAppTroubleshootingEvent extends DeviceManagementTroubleshootingEvent { @@ -27256,7 +27334,7 @@ export interface MobileAppTroubleshootingEvent extends DeviceManagementTroublesh managedDeviceIdentifier?: NullableOption; // Identifier for the user that tried to enroll the device. userId?: NullableOption; - // Indicates collection of App Log Upload Request. + // The collection property of AppLogUploadRequest. appLogCollectionRequests?: NullableOption; } // tslint:disable-next-line: no-empty-interface @@ -28199,6 +28277,7 @@ export interface OnlineMeeting extends OnlineMeetingBase { recording?: NullableOption; // The meeting start time in UTC. Required when you create an online meeting. startDateTime?: NullableOption; + aiInsights?: NullableOption; // The attendance report of the latest online meeting session. Read-only. meetingAttendanceReport?: NullableOption; // The recordings of an online meeting. Read-only. @@ -29095,6 +29174,14 @@ export interface OverprovisionedGcpServiceAccountFinding extends IdentityFinding export interface OverprovisionedServerlessFunctionFinding extends IdentityFinding {} // tslint:disable-next-line: no-empty-interface export interface OverprovisionedUserFinding extends IdentityFinding {} +export interface PageTemplate extends BaseSitePage { + // The title area on the SharePoint page template. + titleArea?: NullableOption; + // The layout of the content in a given SharePoint page template, including horizontal sections and vertical sections. + canvasLayout?: NullableOption; + // The collection of web parts on the SharePoint page. + webParts?: NullableOption; +} export interface Participant extends Entity { // Information about the participant. info?: ParticipantInfo; @@ -29264,11 +29351,11 @@ export interface PaymentTerm { // tslint:disable-next-line: no-empty-interface export interface PendingExternalUserProfile extends ExternalProfile {} export interface PeopleAdminSettings extends Entity { - // Represents administrator settings that manage the support for item insights in an organization. + // Administrator settings that manage the support for item insights in an organization. itemInsights?: NullableOption; - // Contains a collection of the properties an administrator defined as visible on the Microsoft 365 profile card. + // A collection of the properties an administrator defined as visible on the Microsoft 365 profile card. profileCardProperties?: NullableOption; - // Represents administrator settings that manage the support of pronouns in an organization. + // Administrator settings that manage the support of pronouns in an organization. pronouns?: NullableOption; } export interface Permission extends Entity { @@ -29883,6 +29970,8 @@ export interface PlannerTask extends PlannerDelta { isOnMyDay?: NullableOption; // Read-only. The date on which task is added to or removed from MyDay. isOnMyDayLastModifiedDate?: NullableOption; + lastModifiedBy?: NullableOption; + lastModifiedDateTime?: NullableOption; // The hint used to order items of this type in a list view. For more information, see Using order hints in plannern. orderHint?: NullableOption; // The percentage of task completion. When set to 100, the task is completed. @@ -31136,7 +31225,7 @@ export interface ProtectionRuleBase extends Entity { createdDateTime?: NullableOption; // Contains error details if an operation on a rule fails. error?: NullableOption; - // Indicates whether the protection rule is static or dynamic. + // true indicates that the protection rule is dynamic; false that it's static. Currently, only static rules are supported. isAutoApplyEnabled?: NullableOption; // The identity of the person who last modified the rule. lastModifiedBy?: NullableOption; @@ -31556,6 +31645,8 @@ export interface RemoteActionAudit extends Entity { actionState?: ActionState; // BulkAction ID bulkDeviceActionId?: NullableOption; + // DeviceAction category. Possible values are: single, bulk. + deviceActionCategory?: DeviceActionCategory; // Intune device name. deviceDisplayName?: NullableOption; // IMEI of the device. @@ -31626,6 +31717,8 @@ export interface ReportRoot extends Entity { dailyPrintUsageByUser?: NullableOption; dailyPrintUsageSummariesByPrinter?: NullableOption; dailyPrintUsageSummariesByUser?: NullableOption; + // Reports for Microsoft Entra Health Monitoring. + healthMonitoring?: NullableOption; // Retrieve a list of monthly print usage summaries, grouped by printer. monthlyPrintUsageByPrinter?: NullableOption; // Retrieve a list of monthly print usage summaries, grouped by user. @@ -31640,7 +31733,7 @@ export interface ReportRoot extends Entity { serviceActivity?: NullableOption; // Represents a collection of sign-in activities of service principals. servicePrincipalSignInActivities?: NullableOption; - // Reports that relate to tenant-level Microsoft Entra SLA attainment. + // Reports that relate to tenant-level Microsoft Entra Health SLA attainment. sla?: NullableOption; // Represents the self-service password reset (SSPR) usage for a given tenant. userCredentialUsageDetails?: NullableOption; @@ -31765,7 +31858,7 @@ export interface RestrictedAppsViolation extends Entity { managedDeviceId?: string; /** * Platform type. Possible values are: android, androidForWork, iOS, macOS, windowsPhone81, windows81AndLater, - * windows10AndLater, androidWorkProfile, windows10XProfile, androidAOSP, all. + * windows10AndLater, androidWorkProfile, windows10XProfile, androidAOSP, linux, all. */ platformType?: PolicyPlatformType; // List of violated restricted apps @@ -32012,6 +32105,7 @@ export interface RoleDefinition extends Entity { } export interface RoleManagement { cloudPC?: NullableOption; + defender?: NullableOption; // The RbacApplication for Device Management deviceManagement?: NullableOption; directory?: NullableOption; @@ -32991,7 +33085,7 @@ export interface ServiceHealthIssue extends ServiceAnnouncementBase { status?: ServiceHealthStatus; } export interface ServiceLevelAgreementRoot extends Entity { - // Collects the Microsoft Entra SLA attainment for each month for a Microsoft Entra tenant. + // Collects the monthly Microsoft Entra Health SLA attainment metrics for a Microsoft Entra tenant. azureADAuthentication?: NullableOption; } export interface ServiceNowConnection extends Entity { @@ -33074,7 +33168,10 @@ export interface ServicePrincipal extends DirectoryObject { appRoles?: AppRole[]; /** * An open complex type that holds the value of a custom security attribute that is assigned to a directory object. - * Nullable. Returned only on $select. Supports $filter (eq, ne, not, startsWith). Filter value is case sensitive. + * Nullable. Returned only on $select. Supports $filter (eq, ne, not, startsWith). Filter value is case sensitive.To read + * this property, the calling app must be assigned the CustomSecAttributeAssignment.Read.All permission. To write this + * property, the calling app must be assigned the CustomSecAttributeAssignment.ReadWrite.All permissions. To read or write + * this property in delegated scenarios, the admin must be assigned the Attribute Assignment Administrator role. */ customSecurityAttributes?: NullableOption; /** @@ -33957,6 +34054,7 @@ export interface SignIn extends Entity { * NPSExtension. */ tokenIssuerType?: NullableOption; + tokenProtectionStatusDetails?: NullableOption; /** * A unique base64 encoded request identifier used to track tokens issued by Microsoft Entra ID as they're redeemed at * resource providers. @@ -34130,6 +34228,8 @@ export interface Site extends BaseItem { operations?: NullableOption; // The collection of pages in the baseSitePages list on this site. pages?: NullableOption; + // The collection of page templates on this site. + pageTemplates?: NullableOption; // The permissions associated with the site. Nullable. permissions?: NullableOption; // A container for a collection of recycleBinItem resources in this site. @@ -34758,7 +34858,7 @@ export interface Team extends Entity { classification?: NullableOption; // Timestamp at which the team was created. createdDateTime?: NullableOption; - // An optional description for the team. Maximum length: 1024 characters. + // An optional description for the team. Maximum length: 1,024 characters. description?: NullableOption; // Settings to configure team discoverability by others. discoverySettings?: NullableOption; @@ -34796,7 +34896,7 @@ export interface Team extends Entity { // The visibility of the group and team. Defaults to Public. visibility?: NullableOption; /** - * A hyperlink that goes to the team in the Microsoft Teams client. It is the URL you get when you right-click a team in + * A hyperlink that goes to the team in the Microsoft Teams client. It's the URL you get when you right-click a team in * the Microsoft Teams client and select Get link to team. This URL should be treated as an opaque blob, and not parsed. */ webUrl?: NullableOption; @@ -36721,7 +36821,11 @@ export interface User extends DirectoryObject { creationType?: NullableOption; /** * An open complex type that holds the value of a custom security attribute that is assigned to a directory object. - * Nullable. Returned only on $select. Supports $filter (eq, ne, not, startsWith). The filter value is case-sensitive. + * Nullable. Returned only on $select. Supports $filter (eq, ne, not, startsWith). The filter value is case-sensitive. To + * read this property, the calling app must be assigned the CustomSecAttributeAssignment.Read.All permission. To write + * this property, the calling app must be assigned the CustomSecAttributeAssignment.ReadWrite.All permissions. To read or + * write this property in delegated scenarios, the admin must be assigned the Attribute Assignment Administrator role. + * Supports $filter (eq, ne, not , ge, le, in). */ customSecurityAttributes?: NullableOption; /** @@ -36753,9 +36857,9 @@ export interface User extends DirectoryObject { * The date and time when the user left or will leave the organization. To read this property, the calling app must be * assigned the User-LifeCycleInfo.Read.All permission. To write this property, the calling app must be assigned the * User.Read.All and User-LifeCycleInfo.ReadWrite.All permissions. To read this property in delegated scenarios, the admin - * needs at least one of the following Microsoft Entra roles: Lifecycle Workflows Administrator, Global Reader. To write - * this property in delegated scenarios, the admin needs the Global Administrator role. Supports $filter (eq, ne, not , - * ge, le, in). For more information, see Configure the employeeLeaveDateTime property for a user. + * needs at least one of the following Microsoft Entra roles: Lifecycle Workflows Administrator (least privilege), Global + * Reader. To write this property in delegated scenarios, the admin needs the Global Administrator role. Supports $filter + * (eq, ne, not , ge, le, in). For more information, see Configure the employeeLeaveDateTime property for a user. */ employeeLeaveDateTime?: NullableOption; /** @@ -36872,24 +36976,17 @@ export interface User extends DirectoryObject { * ge, le, in, startsWith, and eq on null values). */ officeLocation?: NullableOption; - /** - * Contains the on-premises Active Directory distinguished name or DN. The property is only populated for customers - * synchronizing their on-premises directory to Microsoft Entra ID via Microsoft Entra Connect. Read-only. - */ + // Contains the on-premises Active Directory distinguished name or DN. onPremisesDistinguishedName?: NullableOption; - /** - * Contains the on-premises domainFQDN, also called dnsDomainName synchronized from the on-premises directory. The - * property is only populated for customers synchronizing their on-premises directory to Microsoft Entra ID via Microsoft - * Entra Connect. Read-only. - */ + // Contains the on-premises domainFQDN, also called dnsDomainName synchronized from the on-premises directory. onPremisesDomainName?: NullableOption; /** * Contains extensionAttributes1-15 for the user. These extension attributes are also known as Exchange custom attributes - * 1-15. For an onPremisesSyncEnabled user, the source of authority for this set of properties is the on-premises and is - * read-only. For a cloud-only user (where onPremisesSyncEnabled is false), these properties can be set during the - * creation or update of a user object. For a cloud-only user previously synced from on-premises Active Directory, these - * properties are read-only in Microsoft Graph but can be fully managed through the Exchange Admin Center or the Exchange - * Online V2 module in PowerShell. Supports $filter (eq, ne, not, in). + * 1-15. Each attribute can store up to 1024 characters. For an onPremisesSyncEnabled user, the source of authority for + * this set of properties is the on-premises and is read-only. For a cloud-only user (where onPremisesSyncEnabled is + * false), these properties can be set during the creation or update of a user object. For a cloud-only user previously + * synced from on-premises Active Directory, these properties are read-only in Microsoft Graph but can be fully managed + * through the Exchange Admin Center or the Exchange Online V2 module in PowerShell. Supports $filter (eq, ne, not, in). */ onPremisesExtensionAttributes?: NullableOption; /** @@ -36909,14 +37006,14 @@ export interface User extends DirectoryObject { // Errors when using Microsoft synchronization product during provisioning. Supports $filter (eq, not, ge, le). onPremisesProvisioningErrors?: NullableOption; /** - * Contains the on-premises sAMAccountName synchronized from the on-premises directory. The property is only populated for - * customers synchronizing their on-premises directory to Microsoft Entra ID via Microsoft Entra Connect. Read-only. - * Supports $filter (eq, ne, not, ge, le, in, startsWith). + * Contains the on-premises sAMAccountName synchronized from the on-premises directory. Supports $filter (eq, ne, not, ge, + * le, in, startsWith). */ onPremisesSamAccountName?: NullableOption; /** - * Contains the on-premises security identifier (SID) for the user synchronized from on-premises to the cloud. Read-only. - * Supports $filter (eq including on null values). + * Contains the on-premises security identifier (SID) for the user synchronized from on-premises to the cloud. Must be in + * the format of SID, such as 'S-1-5-21-1180699209-877415012-3182824384-1006'. Supports $filter (eq including on null + * values). */ onPremisesSecurityIdentifier?: NullableOption; // Contains all on-premises Session Initiation Protocol (SIP) information related to the user. Read-only. @@ -36928,9 +37025,8 @@ export interface User extends DirectoryObject { */ onPremisesSyncEnabled?: NullableOption; /** - * Contains the on-premises userPrincipalName synchronized from the on-premises directory. The property is only populated - * for customers synchronizing their on-premises directory to Microsoft Entra ID via Microsoft Entra Connect. Read-only. - * Supports $filter (eq, ne, not, ge, le, in, startsWith). + * Contains the on-premises userPrincipalName synchronized from the on-premises directory. Supports $filter (eq, ne, not, + * ge, le, in, startsWith). */ onPremisesUserPrincipalName?: NullableOption; /** @@ -36950,7 +37046,11 @@ export interface User extends DirectoryObject { /** * Specifies the password profile for the user. The profile contains the user's password. This property is required when a * user is created. The password in the profile must satisfy minimum requirements as specified by the passwordPolicies - * property. By default, a strong password is required. Supports $filter (eq, ne, not, in, and eq on null values). + * property. By default, a strong password is required. Supports $filter (eq, ne, not, in, and eq on null values). To + * update this property: In delegated access, the calling app must be assigned the Directory.AccessAsUser.All delegated + * permission on behalf of the signed-in user. In application-only access, the calling app must be assigned the + * User.ReadWrite.All (least privilege) or Directory.ReadWrite.All (higher privilege) application permission and at least + * the User Administrator Microsoft Entra role. */ passwordProfile?: NullableOption; // A list for users to enumerate their past projects. Returned only on $select. @@ -38815,6 +38915,7 @@ export interface UserRegistrationDetails extends Entity { } export interface UserRequestsMetric extends Entity { appId?: NullableOption; + browser?: NullableOption; country?: NullableOption; // The date of the user insight. factDate?: NullableOption; @@ -38868,6 +38969,7 @@ export interface UserSignInInsight extends GovernanceInsight { } export interface UserSignUpMetric extends Entity { appId?: NullableOption; + browser?: NullableOption; // The total number of users who signed up in the specified period. Supports $filter (eq). count?: number; country?: NullableOption; @@ -45004,6 +45106,11 @@ export interface Acl { type?: AclType; value?: string; } +export interface ActionItem { + ownerDisplayName?: NullableOption; + text?: NullableOption; + title?: NullableOption; +} export interface ActionResultPart { // The error that occurred, if any, during the course of the bulk operation. error?: NullableOption; @@ -45436,6 +45543,21 @@ export interface AndroidMinimumOperatingSystem { * boolean values will be TRUE. */ v11_0?: boolean; + /** + * When TRUE, only Version 12.0 or later is supported. Default value is FALSE. Exactly one of the minimum operating system + * boolean values will be TRUE. + */ + v12_0?: boolean; + /** + * When TRUE, only Version 13.0 or later is supported. Default value is FALSE. Exactly one of the minimum operating system + * boolean values will be TRUE. + */ + v13_0?: boolean; + /** + * When TRUE, only Version 14.0 or later is supported. Default value is FALSE. Exactly one of the minimum operating system + * boolean values will be TRUE. + */ + v14_0?: boolean; /** * When TRUE, only Version 4.0 or later is supported. Default value is FALSE. Exactly one of the minimum operating system * boolean values will be TRUE. @@ -45732,10 +45854,12 @@ export interface ApplyLabelAction extends InformationProtectionAction { */ responsibleSensitiveTypeIds?: string[]; } -// tslint:disable-next-line: no-empty-interface -export interface AppManagementApplicationConfiguration extends AppManagementConfiguration {} +export interface AppManagementApplicationConfiguration extends AppManagementConfiguration { + // Configuration object for restrictions on identifierUris property for an application + identifierUris?: NullableOption; +} export interface AppManagementConfiguration { - // Collection of keyCredential restrictions settings to be applied to an application or service principal. + // Collection of certificate restrictions settings to be applied to an application or service principal. keyCredentials?: NullableOption; // Collection of password restrictions settings to be applied to an application or service principal. passwordCredentials?: NullableOption; @@ -47259,6 +47383,9 @@ export interface CalendarSharingMessageAction { actionType?: NullableOption; importance?: NullableOption; } +export interface CallAiInsightViewPoint { + mentionEvents?: NullableOption; +} export interface CallEndedEventMessageDetail extends EventMessageDetail { // Duration of the call. callDuration?: NullableOption; @@ -47280,6 +47407,8 @@ export interface CallOptions { hideBotAfterEscalation?: NullableOption; // Indicates whether content sharing notifications should be enabled for the call. isContentSharingNotificationEnabled?: NullableOption; + // Indicates whether delta roster is enabled for the call. + isDeltaRosterEnabled?: NullableOption; } export interface CallParticipantInfo { // Identity of the call participant. @@ -47639,13 +47768,13 @@ export interface ChatMessageMention { * <at id='{index}'> tag in the message body. */ id?: NullableOption; - // The entity (user, application, team, or channel) that was @mentioned. + // The entity (user, application, team, channel, or chat) that was @mentioned. mentioned?: NullableOption; // String used to represent the mention. For example, a user's display name, a team name. mentionText?: NullableOption; } export interface ChatMessageMentionedIdentitySet extends IdentitySet { - // If present, represents a conversation (for example, team or channel) @mentioned in a message. + // If present, represents a conversation (for example, team, channel, or chat) @mentioned in a message. conversation?: NullableOption; // If present, represents a tag @mentioned in a team message. tag?: NullableOption; @@ -47864,6 +47993,27 @@ export interface CloudPcAuditResource { // The type of the audit resource. resourceType?: string; } +export interface CloudPcAutopilotConfiguration { + /** + * Indicates the number of minutes allowed for the Autopilot application to apply the device preparation profile (DPP) + * configurations to the device. If the Autopilot application doesn't finish within the specified time + * (applicationTimeoutInMinutes), the application error is added to the statusDetail property of the cloudPC object. The + * supported value is an integer between 10 and 360. Required. + */ + applicationTimeoutInMinutes?: number; + /** + * The unique identifier (ID) of the Autopilot device preparation profile (DPP) that links a Windows Autopilot device + * preparation policy to ensure that devices are ready for users after provisioning. Required. + */ + devicePreparationProfileId?: string; + /** + * Indicates whether the access to the device is allowed when the application of Autopilot device preparation profile + * (DPP) configurations fails or times out. If true, the status of the device is failed and the device is unable to + * access; otherwise, the status of the device is provisionedWithWarnings and the device is allowed to access. The default + * value is false. Required. + */ + onFailureDeviceAccessDenied?: boolean; +} export interface CloudPcBulkActionSummary { // The number of Cloud PCs where the action failed. failedCount?: number; @@ -47969,8 +48119,8 @@ export interface CloudPcDisasterRecoveryMicrosoftHostedNetworkSetting extends Cl * based on resource availability. For example, the europeUnion region group contains the North Europe and West Europe * regions. Possible values are: default, australia, canada, usCentral, usEast, usWest, france, germany, europeUnion, * unitedKingdom, japan, asia, india, southAmerica, euap, usGovernment, usGovernmentDOD, unknownFutureValue, norway, - * switzerland,southKorea. You must use the Prefer: include-unknown-enum-members request header to get the following - * values in this evolvable enum: norway, switzerland,southKorea. + * switzerland,southKorea, middleEast, mexico. You must use the Prefer: include-unknown-enum-members request header to get + * the following values in this evolvable enum: norway, switzerland,southKorea, middleEast, mexico. */ regionGroup?: CloudPcRegionGroup; /** @@ -48076,6 +48226,10 @@ export interface CloudPcManagementGroupAssignmentTarget extends CloudPcManagemen servicePlanId?: NullableOption; } export interface CloudPcNotificationSetting { + /** + * If true, doesn't prompt the user to restart the Cloud PC. If false, prompts the user to restart Cloud PC. The default + * value is false. + */ restartPromptsDisabled?: NullableOption; } export interface CloudPcOnPremisesConnectionHealthCheck { @@ -49211,8 +49365,14 @@ export interface CustomAction extends InformationProtectionAction { // Properties, in key value pair format, of the action. properties?: NullableOption; } -// tslint:disable-next-line: no-empty-interface -export interface CustomAppManagementConfiguration extends AppManagementConfiguration {} +export interface CustomAppManagementApplicationConfiguration { + // Configuration for identifierUris restrictions + identifierUris?: NullableOption; +} +export interface CustomAppManagementConfiguration extends AppManagementConfiguration { + // Restrictions applicable only to application objects that the policy applies to. + applicationRestrictions?: NullableOption; +} // tslint:disable-next-line: no-empty-interface export interface CustomAppScopeAttributesDictionary extends Dictionary {} export interface CustomClaim extends CustomClaimBase { @@ -49700,7 +49860,7 @@ export interface DeviceAndAppManagementAssignedRoleDetails { roleDefinitionIds?: NullableOption; } export interface DeviceAndAppManagementAssignmentTarget { - // The Id of the filter for the target assignment. + // The ID of the filter for the target assignment. deviceAndAppManagementAssignmentFilterId?: NullableOption; // The type of filter of the target assignment i.e. Exclude or Include. Possible values are: none, include, exclude. deviceAndAppManagementAssignmentFilterType?: DeviceAndAppManagementAssignmentFilterType; @@ -50396,8 +50556,6 @@ export interface DeviceManagementConfigurationIntegerSettingValueTemplate extend // Required value definition. requiredValueDefinition?: NullableOption; } -// tslint:disable-next-line: no-empty-interface -export interface DeviceManagementConfigurationJustInTimeAssignmentPolicy {} export interface DeviceManagementConfigurationOptionDefinition { // List of Settings that depends on this option dependedOnBy?: NullableOption; @@ -51480,6 +51638,13 @@ export interface EmbeddedSIMActivationCode { // The input must match the following regular expression: '^([a-zA-Z0-9]+(-[a-zA-Z0-9]+)*\.)+[a-zA-Z]{2,}$'. smdpPlusServerAddress?: string; } +export interface EmergencyCallerInfo { + displayName?: NullableOption; + location?: NullableOption; + phoneNumber?: NullableOption; + tenantId?: NullableOption; + upn?: NullableOption; +} export interface EmployeeOrgData { // The cost center associated with the user. Returned only on $select. Supports $filter. costCenter?: NullableOption; @@ -51733,9 +51898,12 @@ export interface ExpressionInputObject { properties?: NullableOption; } export interface ExtendedKeyUsage { - // Extended Key Usage Name + // The extended key usage (EKU) name that provides a user-friendly way to identify an EKU. name?: NullableOption; - // Extended Key Usage Object Identifier + /** + * The object identifier (OID) of an extended key usage of a certificate. For example, '1.3.6.1.5.5.7.3.2' for client + * authentication. + */ objectIdentifier?: NullableOption; } export interface ExtendRemoteHelpSessionResponse { @@ -51869,9 +52037,10 @@ export interface FileStorageContainerCustomPropertyValue { } export interface FileStorageContainerSettings { /** - * Indicates whether OCR is enabled for a given container. If OCR is enabled on a container, OCR extraction is performed - * for recently added or updated documents (of supported document types) and the extracted fields are added to the - * metadata of the document. This enables end-user search and search-driven solutions. + * Indicates whether Optical Character Recognition (OCR) is enabled for the container. The default value is false. When + * set to true, OCR extraction is performed for new and updated documents of supported document types, and the extracted + * fields in the metadata of the document enable end-user search and search-driven solutions. When set to false, existing + * OCR metadata is not impacted. Optional. Read-write. */ isOcrEnabled?: NullableOption; } @@ -52346,17 +52515,38 @@ export interface HyperlinkOrPictureColumn { isPicture?: NullableOption; } // tslint:disable-next-line: interface-name -export interface Identity { +export interface IdentifierUriConfiguration { + // Block new identifier URIs for applications, unless they are the 'default' URI of the format api://{appId}. + nonDefaultUriAddition?: NullableOption; +} +// tslint:disable-next-line: interface-name +export interface IdentifierUriRestriction { /** - * The display name of the identity. For drive items, the display name might not always be available or up to date. For - * example, if a user changes their display name the API might show the new value in a future response, but the items - * associated with the user don't show up as changed when using delta. + * If true, the restriction isn't enforced for applications that are configured to receive V2 tokens in Entra ID; else, + * the restriction isn't enforced for those applications. */ - displayName?: NullableOption; + excludeAppsReceivingV2Tokens?: NullableOption; /** - * Unique identifier for the identity or actor. For example, in the access reviews decisions API, this property might - * record the id of the principal, that is, the group, user, or application that's subject to review. + * If true, the restriction isn't enforced for SAML applications in Microsoft Entra ID; else, the restriction is enforced + * for those applications. */ + excludeSaml?: NullableOption; + /** + * Specifies the date from which the policy restriction applies to newly created applications. For existing applications, + * the enforcement date can be retroactively applied. + */ + restrictForAppsCreatedAfterDateTime?: NullableOption; + /** + * String value that indicates if the restriction is evaluated. The possible values are: enabled, disabled, and + * unknownFutureValue. If enabled, the restriction is evaluated. If disabled, the restriction isn't evaluated or enforced. + */ + state?: AppManagementRestrictionState; +} +// tslint:disable-next-line: interface-name +export interface Identity { + // The display name of the identity. This property is read-only. + displayName?: NullableOption; + // The identifier of the identity. This property is read-only. id?: NullableOption; } // tslint:disable-next-line: interface-name @@ -52368,11 +52558,11 @@ export interface IdentityDetails { } // tslint:disable-next-line: interface-name export interface IdentitySet { - // The Identity of the Application. This property is read-only. + // Optional. The application associated with this action. application?: NullableOption; - // The Identity of the Device. This property is read-only. + // Optional. The device associated with this action. device?: NullableOption; - // The Identity of the User. This property is read-only. + // Optional. The user associated with this action. user?: NullableOption; } // tslint:disable-next-line: interface-name no-empty-interface @@ -53345,7 +53535,10 @@ export interface KeyCredential { * defaults to the thumbprint of the certificate. */ customKeyIdentifier?: NullableOption; - // Friendly name for the key. Optional. + /** + * The friendly name for the key, with a maximum length of 90 characters. Longer values are accepted but shortened. + * Optional. + */ displayName?: NullableOption; /** * The date and time at which the credential expires. The DateTimeOffset type represents date and time information using @@ -53355,7 +53548,7 @@ export interface KeyCredential { /** * Value for the key credential. Should be a Base64 encoded value. Returned only on $select for a single object, that is, * GET applications/{applicationId}?$select=keyCredentials or GET - * servicePrincipals/{servicePrincipalId}?$select=keyCredentials; otherwise, it is always null. From a .cer certificate, + * servicePrincipals/{servicePrincipalId}?$select=keyCredentials; otherwise, it's always null. From a .cer certificate, * you can read the key using the Convert.ToBase64String() method. For more information, see Get the certificate key. */ key?: NullableOption; @@ -54328,9 +54521,14 @@ export interface ManagedDeviceReportedApp { appId?: NullableOption; } export interface ManagedDeviceSummarizedAppState { - // DeviceId of device represented by this object + // The unique identifier (DeviceId) associated with the device. deviceId?: NullableOption; - // runState for the object. Possible values are: unknown, success, fail, scriptError, pending, notApplicable. + /** + * The device management script run state for the device, which summarizes the overall status of apps installation on the + * devices. If any app installation encounters an error, the state will be marked as fail; otherwise, if any app is + * pending installation, the state will be marked as pending. All possible values include: unknown, fail, pending, + * notApplicable. Possible values are: unknown, success, fail, scriptError, pending, notApplicable, unknownFutureValue. + */ summarizedAppState?: RunState; } export interface ManagedDeviceWindowsOperatingSystemEdition { @@ -54565,6 +54763,15 @@ export interface MeetingCapability { export interface MeetingInfo { allowConversationWithoutHost?: NullableOption; } +export interface MeetingNote { + subpoints?: NullableOption; + text?: NullableOption; + title?: NullableOption; +} +export interface MeetingNoteSubpoint { + text?: NullableOption; + title?: NullableOption; +} export interface MeetingParticipantInfo { // Identity information of the participant. Only the user property is used for onlineMeeting participants. identity?: NullableOption; @@ -54673,6 +54880,11 @@ export interface MentionAction { // The identities of the users mentioned in this action. mentionees?: NullableOption; } +export interface MentionEvent { + eventDateTime?: NullableOption; + speaker?: NullableOption; + transcriptUtterance?: NullableOption; +} export interface MentionsPreview { // True if the signed-in user is mentioned in the parent resource instance. Read-only. Supports filter. isMentioned?: NullableOption; @@ -55546,7 +55758,10 @@ export interface OnPremisesDirectorySynchronizationFeature { groupWriteBackEnabled?: NullableOption; // Used to indicate on-premise password synchronization is enabled. passwordSyncEnabled?: NullableOption; - // Used to indicate that writeback of password resets from Microsoft Entra ID to on-premises AD is enabled. + /** + * Used to indicate that writeback of password resets from Microsoft Entra ID to on-premises AD is enabled. This property + * isn't in use and updating it isn't supported. + */ passwordWritebackEnabled?: NullableOption; // Used to indicate that we should quarantine objects with conflicting proxy address. quarantineUponProxyAddressesConflictEnabled?: NullableOption; @@ -55891,10 +56106,7 @@ export interface OutlookGeoCoordinates { longitude?: NullableOption; } export interface OutOfBoxExperienceSetting { - /** - * The Entra join authentication type. Possible values are singleUser and shared. The default is singleUser. Possible - * values are: singleUser, shared, unknownFutureValue. - */ + // The Entra join authentication type. Possible values are singleUser and shared. The default is singleUser. deviceUsageType?: WindowsDeviceUsageType; /** * When TRUE, the link that allows user to start over with a different account on company sign-in is hidden. When false, @@ -55917,10 +56129,7 @@ export interface OutOfBoxExperienceSetting { * user during OOBE. Default value is FALSE. */ privacySettingsHidden?: boolean; - /** - * The type of user. Possible values are administrator and standard. Default value is administrator. Yes No. Possible - * values are: administrator, standard, unknownFutureValue. - */ + // The type of user. Possible values are administrator and standard. Default value is administrator. Yes No userType?: WindowsUserType; } export interface OutOfBoxExperienceSettings { @@ -56075,7 +56284,7 @@ export interface PasswordCredentialConfiguration { restrictForAppsCreatedAfterDateTime?: NullableOption; /** * The type of restriction being applied. The possible values are: passwordAddition, passwordLifetime, - * symmetricKeyAddition, symmetricKeyLifetime,customPasswordAddition, and unknownFutureValue. Each value of + * symmetricKeyAddition, symmetricKeyLifetime, customPasswordAddition, and unknownFutureValue. Each value of * restrictionType can be used only once per policy. */ restrictionType?: NullableOption; @@ -56103,6 +56312,7 @@ export interface PasswordProfile { password?: NullableOption; } export interface PasswordResetResponse { + // The Microsoft Entra ID-generated password. newPassword?: NullableOption; } export interface PasswordSingleSignOnCredentialSet { @@ -58432,7 +58642,8 @@ export interface ScheduleInformation { /** * Represents a merged view of availability of all the items in scheduleItems. The view consists of time slots. * Availability during each time slot is indicated with: 0= free or working elswhere, 1= tentative, 2= busy, 3= out of - * office.Note: Working elsewhere is set to 0 instead of 4 for backward compatibility. For details, see the Q&A. + * office.Note: Working elsewhere is set to 0 instead of 4 for backward compatibility. For details, see the Q&A and + * Exchange 2007 and Exchange 2010 do not use the WorkingElsewhere value. */ availabilityView?: NullableOption; // Error information from attempting to get the availability of the user, distribution list, or resource. @@ -59549,6 +59760,8 @@ export interface StoragePlanInformation { // Indicates if there are higher storage quota plans available. Read-only. upgradeAvailable?: NullableOption; } +// tslint:disable-next-line: no-empty-interface +export interface StringDictionary extends Dictionary {} export interface StringKeyAttributeMappingSourceValuePair { // The name of the parameter. key?: NullableOption; @@ -59575,7 +59788,11 @@ export interface StringKeyStringValuePair { value?: NullableOption; } export interface StrongAuthenticationRequirements { - // Sets the per-user MFA state for the user. The possible values are: disabled, enforced, enabled, unknownFutureValue. + /** + * Sets the per-user MFA state for the user. The possible values are: disabled, enforced, enabled, unknownFutureValue. + * When you update a user's MFA state to enabled and the user has already registered an MFA method, their state changes + * automatically to enforced. + */ perUserMfaState?: NullableOption; } // tslint:disable-next-line: no-empty-interface @@ -60807,6 +61024,10 @@ export interface TokenMeetingInfo extends MeetingInfo { // The token used to join the call. token?: string; } +export interface TokenProtectionStatusDetails { + signInSessionStatus?: NullableOption; + signInSessionStatusCode?: NullableOption; +} // tslint:disable-next-line: no-empty-interface export interface ToLowercaseTransformation extends CustomClaimTransformation {} export interface ToneInfo { @@ -61984,6 +62205,8 @@ export interface WhatIfUserActionContext extends ConditionalAccessContext { // tslint:disable-next-line: no-empty-interface export interface Win32CatalogAppAssignmentSettings extends Win32LobAppAssignmentSettings {} export interface Win32LobAppAssignmentSettings extends MobileAppAssignmentSettings { + // The auto-update settings to apply for this app assignment. + autoUpdateSettings?: NullableOption; /** * The delivery optimization priority for this app assignment. This setting is not supported in National Cloud * environments. Possible values are: notConfigured, foreground. @@ -61996,6 +62219,13 @@ export interface Win32LobAppAssignmentSettings extends MobileAppAssignmentSettin // The reboot settings to apply for this app assignment. restartSettings?: NullableOption; } +export interface Win32LobAppAutoUpdateSettings { + /** + * The auto-update superseded apps state setting for the app assignment. Possible values are notConfigured and enabled. + * Default value is notConfigured. Possible values are: notConfigured, enabled, unknownFutureValue. + */ + autoUpdateSupersededAppsState?: Win32LobAutoUpdateSupersededAppsState; +} // tslint:disable-next-line: no-empty-interface export interface Win32LobAppDetection {} export interface Win32LobAppFileSystemDetection extends Win32LobAppDetection { @@ -62886,10 +63116,7 @@ export interface WindowsPackageInformation { minimumSupportedOperatingSystem?: NullableOption; } export interface WindowsUniversalAppXAppAssignmentSettings extends MobileAppAssignmentSettings { - /** - * If true, uses device execution context for Windows Universal AppX mobile app. Device-context install is not allowed - * when this type of app is targeted with Available intent. Defaults to false. - */ + // Whether or not to use device execution context for Windows Universal AppX mobile app. useDeviceContext?: boolean; } export interface WindowsUpdateActiveHoursInstall extends WindowsUpdateInstallScheduleType { @@ -65077,6 +65304,115 @@ export namespace ExternalConnectors { priority?: NullableOption; } } +export namespace HealthMonitoring { + type AlertState = "active" | "resolved" | "unknownFutureValue"; + type AlertType = + | "unknown" + | "mfaSignInFailure" + | "managedDeviceSignInFailure" + | "compliantDeviceSignInFailure" + | "unknownFutureValue"; + type Category = "unknown" | "authentication" | "unknownFutureValue"; + type EnrichmentState = "none" | "inProgress" | "enriched" | "unknownFutureValue"; + type Scenario = "unknown" | "mfa" | "devices" | "unknownFutureValue"; + interface Alert extends microsoftgraphbeta.Entity { + /** + * Indicates which type of scenario an alert is associated with. The possible values are: unknown, mfaSignInFailure, + * managedDeviceSignInFailure, compliantDeviceSignInFailure, unknownFutureValue. + */ + alertType?: AlertType; + // The classification that groups the scenario. The possible values are: unknown, authentication, unknownFutureValue. + category?: Category; + // The time when Microsoft Entra Health monitoring generated the alert. Supports $orderby. + createdDateTime?: string; + // A key-value pair that contains the name of and link to the documentation to aid in investigation of the alert. + documentation?: NullableOption; + /** + * Investigative information on the alert. This information typically includes counts of impacted objects, which include + * directory objects such as users, groups, and devices, and a pointer to supporting data. + */ + enrichment?: NullableOption; + /** + * The area being monitored on the system that is emitting the source signals. The possible values are: unknown, mfa, + * devices, unknownFutureValue. + */ + scenario?: Scenario; + /** + * The collection of signals that were used in the generation of the alert. These signals are sourced from serviceActivity + * APIs and are added to the alert as key-value pairs. + */ + signals?: NullableOption; + // The current lifecycle state of the alert. The possible values are: active, resolved, unknownFutureValue. + state?: AlertState; + } + interface AlertConfiguration extends microsoftgraphbeta.Entity { + /** + * Defines the recipients of email notifications for an alert type. Currently, only one email notification configuration + * is supported for an alert configuration, meaning only one group can receive notifications for an alert type. + */ + emailNotificationConfigurations?: NullableOption; + } + interface HealthMonitoringRoot extends microsoftgraphbeta.Entity { + // The configuration of an alert type, which defines behavior that occurs when an alert is created. + alertConfigurations?: NullableOption; + /** + * The collection of health monitoring system detected alerts for anomalous usage patterns found in a Microsoft Entra + * tenant. + */ + alerts?: NullableOption; + } +// tslint:disable-next-line: no-empty-interface + interface ApplicationImpactSummary extends DirectoryObjectImpactSummary {} +// tslint:disable-next-line: no-empty-interface + interface DeviceImpactSummary extends DirectoryObjectImpactSummary {} +// tslint:disable-next-line: no-empty-interface + interface Dictionary {} + interface DirectoryObjectImpactSummary extends ResourceImpactSummary { + resourceSampling?: NullableOption; + } +// tslint:disable-next-line: no-empty-interface + interface Documentation extends HealthMonitoringDictionary {} + interface EmailNotificationConfiguration { + // The identifier of the group to send an email to. All group types with configured email addresses are supported. + groupId?: string; + // Indicates whether email notifications are enabled on the alert type. + isEnabled?: boolean; + } + interface Enrichment { + /** + * A collection of resource impact summaries that gives a high level view of the kind of resources that were impacted and + * to what degree. + */ + impacts?: NullableOption; + // The current enrichment state of the alert. The possible values are: none, inProgress, enriched, unknownFutureValue. + state?: EnrichmentState; + // A collection of supportingData locations that can be queried for debugging the alert. + supportingData?: NullableOption; + } +// tslint:disable-next-line: no-empty-interface + interface GroupImpactSummary extends DirectoryObjectImpactSummary {} +// tslint:disable-next-line: no-empty-interface + interface HealthMonitoringDictionary extends Dictionary {} + interface ResourceImpactSummary { + // The number of resources impacted. The number could be an exhaustive count or a sampling count. + impactedCount?: string; + /** + * Indicates whether impactedCount is exhaustive or a sampling. When this value is true, the limit was exceeded and + * impactedCount represents a sampling; otherwise, impactedCount represents the true number of impacts. + */ + impactedCountLimitExceeded?: boolean; + // The type of resource that was impacted. Examples include user, group, application, servicePrincipal, device. + resourceType?: string; + } +// tslint:disable-next-line: no-empty-interface + interface ServicePrincipalImpactSummary extends DirectoryObjectImpactSummary {} +// tslint:disable-next-line: no-empty-interface + interface Signals extends HealthMonitoringDictionary {} +// tslint:disable-next-line: no-empty-interface + interface SupportingData extends HealthMonitoringDictionary {} +// tslint:disable-next-line: no-empty-interface + interface UserImpactSummary extends DirectoryObjectImpactSummary {} +} export namespace IdentityGovernanceNamespace { type CustomTaskExtensionOperationStatus = "completed" | "failed" | "unknownFutureValue"; type LifecycleTaskCategory = "joiner" | "leaver" | "unknownFutureValue" | "mover"; @@ -67261,6 +67597,7 @@ export namespace Networkaccess { | "bytesSent" | "bytesReceived" | "totalBytes"; + type AlertSeverity = "informational" | "low" | "medium" | "high" | "unknownFutureValue"; type AlertType = | "unhealthyRemoteNetworks" | "unhealthyConnectors" @@ -67272,6 +67609,7 @@ export namespace Networkaccess { | "webContentBlocked" | "malware"; type BandwidthCapacityInMbps = "mbps250" | "mbps500" | "mbps750" | "mbps1000" | "unknownFutureValue"; + type ConfidenceLevel = "unknown" | "low" | "high" | "unknownFutureValue"; type ConnectionStatus = "open" | "active" | "closed" | "unknownFutureValue"; type ConnectivityState = "pending" | "connected" | "inactive" | "error" | "unknownFutureValue"; type DeviceCategory = "client" | "branch" | "unknownFutureValue" | "remoteNetwork"; @@ -67299,6 +67637,25 @@ export namespace Networkaccess { type ForwardingRuleAction = "bypass" | "forward" | "unknownFutureValue"; type IkeEncryption = "aes128" | "aes192" | "aes256" | "gcmAes128" | "gcmAes256" | "unknownFutureValue"; type IkeIntegrity = "sha256" | "sha384" | "gcmAes128" | "gcmAes256" | "unknownFutureValue"; + type IntentCategory = + | "initialAccess" + | "persistence" + | "privilegeEscalation" + | "defenseEvasion" + | "credentialAccess" + | "discovery" + | "lateralMovement" + | "execution" + | "collection" + | "exfiltration" + | "commandAndControl" + | "impact" + | "impairProcessControl" + | "inhibitResponseFunction" + | "reconnaissance" + | "resourceDevelopment" + | "evasion" + | "unknownFutureValue"; type IpSecEncryption = "none" | "gcmAes128" | "gcmAes192" | "gcmAes256" | "unknownFutureValue"; type IpSecIntegrity = "gcmAes128" | "gcmAes192" | "gcmAes256" | "sha256" | "unknownFutureValue"; type MalwareCategory = @@ -67440,7 +67797,7 @@ export namespace Networkaccess { | "remoteNetworkAlive" | "unknownFutureValue"; type Status = "enabled" | "disabled" | "unknownFutureValue"; - type ThreatSeverity = "informational" | "low" | "medium" | "high" | "critical" | "unknownFutureValue"; + type ThreatSeverity = "low" | "medium" | "high" | "critical" | "unknownFutureValue"; type TrafficForwardingType = "m365" | "internet" | "private" | "unknownFutureValue"; type TrafficType = "internet" | "private" | "microsoft365" | "all" | "unknownFutureValue"; type UsageStatus = "frequentlyUsed" | "rarelyUsed" | "unknownFutureValue"; @@ -67453,7 +67810,7 @@ export namespace Networkaccess { detectionTechnology?: NullableOption; displayName?: string; relatedResources?: NullableOption; - severity?: ThreatSeverity; + severity?: AlertSeverity; vendorName?: string; policy?: NullableOption; } @@ -67794,6 +68151,7 @@ export namespace Networkaccess { * $orderby. */ receivedBytes?: NullableOption; + remoteNetworkId?: NullableOption; resourceTenantId?: NullableOption; /** * Represents the total number of bytes sent in a network communication or data transfer. Supports $filter (eq) and @@ -67840,6 +68198,8 @@ export namespace Networkaccess { // Represents the user principal name (UPN) associated with a user. Supports $filter (eq) and $orderby. userPrincipalName?: NullableOption; vendorNames?: NullableOption; + device?: NullableOption; + user?: NullableOption; } interface Policy extends microsoftgraphbeta.Entity { // Description. @@ -67964,6 +68324,17 @@ export namespace Networkaccess { actionLink?: NullableOption; actionText?: string; } + interface AlertFrequencyPoint { + highSeverityCount?: number; + informationalSeverityCount?: number; + lowSeverityCount?: number; + mediumSeverityCount?: number; + timeStampDateTime?: string; + } + interface AlertSeveritySummary { + count?: number; + severity?: AlertSeverity; + } interface ApplicationSnapshot { appId?: string; } @@ -68175,6 +68546,7 @@ export namespace Networkaccess { } interface PrivateAccessDetails { accessType?: NullableOption; + appSegmentId?: NullableOption; connectionStatus?: NullableOption; connectorId?: NullableOption; connectorIp?: NullableOption; @@ -68203,6 +68575,7 @@ export namespace Networkaccess { interface RelatedMalware extends RelatedResource { category?: NullableOption; name?: NullableOption; + severity?: NullableOption; } interface RelatedProcess extends RelatedResource { isSuspicious?: boolean; @@ -69115,6 +69488,41 @@ export namespace SecurityNamespace { | "VfamDeletePolicy" | "M365DAAD" | "CdpColdCrawlStatus" + | "PowerPlatformAdministratorActivity" + | "Windows365CustomerLockbox" + | "CdpResourceScopeChangeEvent" + | "ComplianceCCExchangeExecutionResult" + | "CdpOcrCostEstimatorRecord" + | "CopilotInteraction" + | "CdpOcrBillingRecord" + | "ComplianceDLPApplications" + | "UAMOperation" + | "VivaLearning" + | "VivaLearningAdmin" + | "PurviewPolicyOperation" + | "PurviewMetadataPolicyOperation" + | "PeopleAdminSettings" + | "CdpComplianceDLPExchangeClassification" + | "CdpComplianceDLPSharePointClassification" + | "FilteringBulkSenderInsightData" + | "FilteringBulkThresholdInsightData" + | "PrivacyOpenAccess" + | "OWAAuth" + | "ComplianceDLPApplicationsClassification" + | "SharePointESignature" + | "Dynamics365BusinessCentral" + | "MeshWorlds" + | "VivaPulseResponse" + | "VivaPulseOrganizer" + | "VivaPulseAdmin" + | "VivaPulseReport" + | "AIAppInteraction" + | "ComplianceDLMExchange" + | "ComplianceDLMSharePoint" + | "ProjectForTheWebAssignedToMeSettings" + | "CPSOperation" + | "ComplianceDLPExchangeDiscovery" + | "PurviewMCRecommendation" | "unknownFutureValue"; type AuditLogUserType = | "Regular" @@ -70444,7 +70852,10 @@ export namespace SecurityNamespace { interface HealthIssue extends microsoftgraphbeta.Entity { // Contains additional information about the issue, such as a list of items to fix. additionalInformation?: string[]; - // The date and time of when the health issue was generated. + /** + * The date and time when the health issue was generated. The timestamp type represents date and time information using + * ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z. + */ createdDateTime?: string; // Contains more detailed information about the health issue. description?: string; @@ -70462,20 +70873,23 @@ export namespace SecurityNamespace { * for Identity health issues. */ issueTypeId?: NullableOption; - // The date and time of when the health issue was last updated. + /** + * The date and time when the health issue was last updated. The timestamp type represents date and time information using + * ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z. + */ lastModifiedDateTime?: string; /** - * This field contains a list of recommended actions that can be taken to resolve the issue effectively and efficiently. - * These actions might include how to investigate the issue further. Not limited to prewritten responses. + * A list of recommended actions that can be taken to resolve the issue effectively and efficiently. These actions might + * include instructions for further investigation and aren't limited to prewritten responses. */ recommendations?: string[]; /** - * Contains a list of commands from the product's PowerShell module that can be used to resolve the issue, if available. - * If there aren't any commands that can be used to solve the issue, this field is empty. The commands, if present, - * provide a quick and efficient way to address the issue. The commands run in order for the single recommended fix. + * A list of commands from the PowerShell module for the product that can be used to resolve the issue, if available. If + * no commands can be used to solve the issue, this property is empty. The commands, if present, provide a quick and + * efficient way to address the issue. These commands run in sequence for the single recommended fix. */ recommendedActionCommands?: string[]; - // A list of the dns names of the sensors the health issue is related to. + // A list of the DNS names of the sensors the health issue is related to. sensorDNSNames?: NullableOption; // The severity of the health issue. The possible values are: low, medium, high, unknownFutureValue. severity?: NullableOption; @@ -70700,6 +71114,7 @@ export namespace SecurityNamespace { * for Identity identified. */ healthIssues?: NullableOption; + // Represents a customer's Microsoft Defender for Identity sensors. sensors?: NullableOption; } // tslint:disable-next-line: interface-name @@ -70872,7 +71287,9 @@ export namespace SecurityNamespace { retentionLabels?: NullableOption; } interface NetworkAdapter extends microsoftgraphbeta.Entity { + // Indicates whether the network adapter is selected for capturing and analyzing network traffic. isEnabled?: NullableOption; + // The name of the network adapter. name?: NullableOption; } interface PassiveDnsRecord extends Artifact { @@ -71062,15 +71479,37 @@ export namespace SecurityNamespace { parent?: NullableOption; } interface Sensor extends microsoftgraphbeta.Entity { + // The date and time when the sensor was generated. createdDateTime?: string; + /** + * The deployment status of the sensor. The possible values are: upToDate, outdated, updating, updateFailed, + * notConfigured, unreachable, disconnected, startFailure, syncing, unknownFutureValue. + */ deploymentStatus?: DeploymentStatus; + // The display name of the sensor. displayName?: string; + // The fully qualified domain name of the sensor. domainName?: string; + /** + * The health status of the sensor. The possible values are: healthy, notHealthyLow, notHealthyMedium, notHealthyHigh, + * unknownFutureValue. + */ healthStatus?: SensorHealthStatus; + // This field displays the count of health issues related to this sensor. openHealthIssuesCount?: number; + /** + * The type of the sensor. The possible values are: adConnectIntegrated, adcsIntegrated, adfsIntegrated, + * domainControllerIntegrated, domainControllerStandalone, unknownFutureValue. + */ sensorType?: SensorType; + // Sensor settings information. settings?: SensorSettings; + // The version of the sensor. version?: string; + /** + * Represents potential issues within a customer's Microsoft Defender for Identity configuration that Microsoft Defender + * for Identity identified related to the sensor. + */ healthIssues?: NullableOption; } interface SiteSource extends DataSource { @@ -71349,6 +71788,8 @@ export namespace SecurityNamespace { // The collection of historical records associated to this WHOIS object. history?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface AadRiskDetectionAuditRecord extends AuditData {} interface AddContentFooterAction extends InformationProtectionAction { // The horizontal alignment of the footer. alignment?: ContentAlignment; @@ -71395,6 +71836,26 @@ export namespace SecurityNamespace { // The name of the UI element where the watermark should be placed. uiElementName?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface AedAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface AiAppInteractionAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface AipFileDeleted extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface AipHeartBeat extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface AipProtectionActionLogRequest extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface AipScannerDiscoverEvent extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface AipSensitivityLabelActionLogRequest extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface AirAdminActionInvestigationData extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface AirInvestigationData extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface AirManualInvestigationData extends AuditData {} interface AlertComment { // The comment text. comment?: NullableOption; @@ -71595,6 +72056,8 @@ export namespace SecurityNamespace { responsibleSensitiveTypeIds?: string[]; sensitivityLabelId?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface AttackSimAdminAuditRecord extends AuditData {} interface AttackSimulationInfo { // The date and time of the attack simulation. attackSimDateTime?: NullableOption; @@ -71607,6 +72070,8 @@ export namespace SecurityNamespace { } // tslint:disable-next-line: no-empty-interface interface AuditData {} +// tslint:disable-next-line: no-empty-interface + interface AuditSearchAuditRecord extends AuditData {} interface AutonomousSystem { // The name of the autonomous system. name?: string; @@ -71617,6 +72082,14 @@ export namespace SecurityNamespace { // A displayable value for these autonomous system details. value?: string; } +// tslint:disable-next-line: no-empty-interface + interface AzureActiveDirectoryAccountLogonAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface AzureActiveDirectoryAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface AzureActiveDirectoryBaseAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface AzureActiveDirectoryStsLogonAuditRecord extends AuditData {} interface AzureResourceEvidence extends AlertEvidence { // The unique identifier for the Azure resource. resourceId?: NullableOption; @@ -71661,6 +72134,32 @@ export namespace SecurityNamespace { encryptedBuffer?: NullableOption; publishingLicense?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface CampaignAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CaseAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CaseInvestigation extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CdpColdCrawlStatusRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CdpContentExplorerAggregateRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CdpDlpSensitiveAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CdpDlpSensitiveEndpointAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CdpLogRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CdpOcrBillingRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CdpResourceScopeChangeEventRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CernerSMSLinkRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CernerSMSSettingsUpdateRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CernerSMSUnlinkRecord extends AuditData {} interface ClassificationResult { // The confidence level, 0 to 100, of the result. confidenceLevel?: number; @@ -71710,6 +72209,48 @@ export namespace SecurityNamespace { // Unique identifier for the response action. Default is deviceId. The possible values are: deviceId, unknownFutureValue. identifier?: DeviceIdEntityIdentifier; } +// tslint:disable-next-line: no-empty-interface + interface ComplianceConnectorAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceDLMExchangeAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceDLMSharePointAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceDlpApplicationsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceDlpApplicationsClassificationAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceDlpBaseAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceDlpClassificationBaseAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceDlpClassificationBaseCdpRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceDlpEndpointAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceDlpEndpointDiscoveryAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceDlpExchangeAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceDlpExchangeClassificationAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceDlpExchangeClassificationCdpRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceDlpExchangeDiscoveryAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceDlpSharePointAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceDlpSharePointClassificationAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceDlpSharePointClassificationExtendedAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceManagerActionRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceSupervisionBaseAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ComplianceSupervisionExchangeAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ConsumptionResourceAuditRecord extends AuditData {} interface ContainerEvidence extends AlertEvidence { // The list of arguments. args?: NullableOption; @@ -71757,12 +72298,28 @@ export namespace SecurityNamespace { createdDateTime?: NullableOption; sensitivityLabelId?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface CopilotInteractionAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CoreReportingSettingsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CortanaBriefingAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CpsCommonPolicyAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CpsPolicyConfigAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CrmBaseAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface CrmEntityOperationAuditRecord extends AuditData {} interface CustomAction extends InformationProtectionAction { // Name of the custom action. name?: NullableOption; // Properties, in key-value pair format, of the action. properties?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface CustomerKeyServiceEncryptionAuditRecord extends AuditData {} interface CvssSummary { // The CVSS score about this vulnerability. score?: number; @@ -71774,9 +72331,26 @@ export namespace SecurityNamespace { // The CVSS vector string for this vulnerability. vectorString?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface DataCenterSecurityBaseAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface DataCenterSecurityCmdletAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface DataGovernanceAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface DataInsightsRestApiAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface DataLakeExportOperationAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface DataShareOperationAuditRecord extends AuditData {} // tslint:disable-next-line: no-empty-interface interface DefaultAuditData extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface DefenderSecurityAlertBaseRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface DeleteCertificateRecord extends AuditData {} interface DeploymentAccessKeyType { + // The deployment access key. deploymentAccessKey?: string; } interface DetectionAction { @@ -71823,6 +72397,8 @@ export namespace SecurityNamespace { defenderAvStatus?: NullableOption; // The fully qualified domain name (FQDN) for the device. deviceDnsName?: NullableOption; + // The DNS domain that this computer belongs to. A sequence of labels separated by dots. + dnsDomain?: NullableOption; // The date and time when the device was first seen. firstSeenDateTime?: NullableOption; /** @@ -71830,6 +72406,8 @@ export namespace SecurityNamespace { * noSensorDataImpairedCommunication, unknown, unknownFutureValue. */ healthStatus?: NullableOption; + // The hostname without the domain suffix. + hostName?: NullableOption; // Ip interfaces of the device during the time of the alert. ipInterfaces?: NullableOption; lastExternalIpAddress?: NullableOption; @@ -71838,6 +72416,8 @@ export namespace SecurityNamespace { loggedOnUsers?: NullableOption; // A unique identifier assigned to a device by Microsoft Defender for Endpoint. mdeDeviceId?: NullableOption; + // A logical grouping of computers within a Microsoft Windows network. + ntDomain?: NullableOption; /** * The status of the machine onboarding to Microsoft Defender for Endpoint. The possible values are: insufficientInfo, * onboarded, canBeOnboarded, unsupported, unknownFutureValue. @@ -71863,6 +72443,8 @@ export namespace SecurityNamespace { } // tslint:disable-next-line: no-empty-interface interface Dictionary {} +// tslint:disable-next-line: no-empty-interface + interface DisableConsentRecord extends AuditData {} interface DisableUserResponseAction extends ResponseAction { /** * Unique identifier for the response action. The possible values are: accountSid, initiatingProcessAccountSid, @@ -71870,6 +72452,14 @@ export namespace SecurityNamespace { */ identifier?: DisableUserEntityIdentifier; } +// tslint:disable-next-line: no-empty-interface + interface DiscoveryAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface DlpEndpointAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface DlpSensitiveInformationTypeCmdletRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface DlpSensitiveInformationTypeRulePackageCmdletRecord extends AuditData {} interface DnsEvidence extends AlertEvidence { dnsServerIp?: NullableOption; domainName?: NullableOption; @@ -71882,8 +72472,12 @@ export namespace SecurityNamespace { // Message that indicates why a downgrade is justified. The message appears in administrative logs. justificationMessage?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface DownloadCertificateRecord extends AuditData {} // tslint:disable-next-line: no-empty-interface interface DynamicColumnValue {} +// tslint:disable-next-line: no-empty-interface + interface Dynamics365BusinessCentralAuditRecord extends AuditData {} interface EmailSender { // The name of the sender. displayName?: NullableOption; @@ -71892,6 +72486,14 @@ export namespace SecurityNamespace { // Sender email address. emailAddress?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface EnableConsentRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface EpicSMSLinkRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface EpicSMSSettingsUpdateRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface EpicSMSUnlinkRecord extends AuditData {} interface EventPropagationResult { // The name of the specific location in the workload associated with the event. location?: NullableOption; @@ -71914,11 +72516,31 @@ export namespace SecurityNamespace { */ queryType?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface ExchangeAdminAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ExchangeAggregatedMailboxAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ExchangeAggregatedOperationRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ExchangeMailboxAuditBaseRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ExchangeMailboxAuditGroupRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ExchangeMailboxAuditRecord extends AuditData {} interface ExportFileMetadata { downloadUrl?: NullableOption; fileName?: NullableOption; size?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface FhirBaseUrlAddRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface FhirBaseUrlApproveRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface FhirBaseUrlDeleteRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface FhirBaseUrlUpdateRecord extends AuditData {} interface FileDetails { // The name of the file. fileName?: NullableOption; @@ -72044,6 +72666,10 @@ export namespace SecurityNamespace { */ identifier?: EmailEntityIdentifier; } +// tslint:disable-next-line: no-empty-interface + interface HealthcareSignalRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface HostedRpaAuditRecord extends AuditData {} interface HostLogonSessionEvidence extends AlertEvidence { account?: NullableOption; endUtcDateTime?: NullableOption; @@ -72119,6 +72745,8 @@ export namespace SecurityNamespace { // The port number. port?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface HrSignalAuditRecord extends AuditData {} interface HuntingQueryResults { // The results of the hunting query. results?: NullableOption; @@ -72127,6 +72755,8 @@ export namespace SecurityNamespace { } // tslint:disable-next-line: no-empty-interface interface HuntingRowResult {} +// tslint:disable-next-line: no-empty-interface + interface HygieneEventRecord extends AuditData {} interface Hyperlink { // The name for this hyperlink. name?: string; @@ -72162,13 +72792,21 @@ export namespace SecurityNamespace { */ identifier?: UserAssetIdentifier; } +// tslint:disable-next-line: interface-name no-empty-interface + interface InformationBarrierPolicyApplicationAuditRecord extends AuditData {} // tslint:disable-next-line: interface-name no-empty-interface interface InformationProtectionAction {} +// tslint:disable-next-line: interface-name no-empty-interface + interface InformationWorkerProtectionAuditRecord extends AuditData {} // tslint:disable-next-line: interface-name interface InitiateInvestigationResponseAction extends ResponseAction { // Unique identifier for the response action. Default is deviceId. The possible values are: deviceId, unknownFutureValue. identifier?: DeviceIdEntityIdentifier; } +// tslint:disable-next-line: interface-name no-empty-interface + interface InsiderRiskScopedUserInsightsRecord extends AuditData {} +// tslint:disable-next-line: interface-name no-empty-interface + interface InsiderRiskScopedUsersRecord extends AuditData {} // tslint:disable-next-line: interface-name interface IntelligenceProfileCountryOrRegionOfOrigin { // A codified representation for this country/region of origin. @@ -72214,6 +72852,10 @@ export namespace SecurityNamespace { location?: NullableOption; stream?: NullableOption; } +// tslint:disable-next-line: interface-name no-empty-interface + interface IrmSecurityAlertRecord extends AuditData {} +// tslint:disable-next-line: interface-name no-empty-interface + interface IrmUserDefinedDetectionRecord extends AuditData {} // tslint:disable-next-line: interface-name interface IsolateDeviceResponseAction extends ResponseAction { // Unique identifier for the response action. Default is deviceId. The possible values are: deviceId, unknownFutureValue. @@ -72223,6 +72865,8 @@ export namespace SecurityNamespace { } // tslint:disable-next-line: no-empty-interface interface JustifyAction extends InformationProtectionAction {} +// tslint:disable-next-line: no-empty-interface + interface KaizalaAuditRecord extends AuditData {} interface KeyValuePair { // Name for this key-value pair. name?: string; @@ -72335,6 +72979,10 @@ export namespace SecurityNamespace { */ targetPort?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface LabelAnalyticsAggregateAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface LabelContentExplorerAuditRecord extends AuditData {} interface LabelingOptions { // Describes whether the label was applied by an automated (standard) process or a person (privileged). assignmentMethod?: AssignmentMethod; @@ -72348,12 +72996,18 @@ export namespace SecurityNamespace { // The GUID of the label that should be applied to the information. labelId?: string; } +// tslint:disable-next-line: no-empty-interface + interface LargeContentMetadataAuditRecord extends AuditData {} interface LoggedOnUser { // User account name of the logged-on user. accountName?: NullableOption; // User account domain of the logged-on user. domainName?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface M365ComplianceConnectorAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface M365DAADAuditRecord extends AuditData {} interface MailboxConfigurationEvidence extends AlertEvidence { configurationId?: NullableOption; configurationType?: NullableOption; @@ -72384,12 +73038,24 @@ export namespace SecurityNamespace { // Uniform resource name (URN) of the automated investigation where the cluster was identified. urn?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface MailSubmissionData extends AuditData {} interface MalwareEvidence extends AlertEvidence { category?: NullableOption; files?: NullableOption; name?: NullableOption; processes?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface ManagedServicesAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ManagedTenantsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MapgAlertsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MapgOnboardAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MapgPolicyAuditRecord extends AuditData {} interface MarkUserAsCompromisedResponseAction extends ResponseAction { /** * Unique identifier for the response action. The possible values are: accountObjectId, initiatingProcessAccountObjectId, @@ -72397,12 +73063,94 @@ export namespace SecurityNamespace { */ identifier?: MarkUserAsCompromisedEntityIdentifier; } +// tslint:disable-next-line: no-empty-interface + interface McasAlertsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MdaDataSecuritySignalRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MdatpAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MdcEventsRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MdiAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MeshWorldsAuditRecord extends AuditData {} interface MetadataAction extends InformationProtectionAction { // A collection of key-value pairs that should be added to the file. metadataToAdd?: NullableOption; // A collection of strings that indicate which keys to remove from the file metadata. metadataToRemove?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface Microsoft365BackupBackupItemAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface Microsoft365BackupBackupPolicyAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface Microsoft365BackupRestoreItemAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface Microsoft365BackupRestoreTaskAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftDefenderExpertsBaseAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftDefenderExpertsXDRAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftFlowAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftFormsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftGraphDataConnectConsent extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftGraphDataConnectOperation extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftPurviewDataMapOperationRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftPurviewMetadataPolicyOperationRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftPurviewPolicyOperationRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftPurviewPrivacyAuditEvent extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftStreamAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftTeamsAdminAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftTeamsAnalyticsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftTeamsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftTeamsDeviceAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftTeamsRetentionLabelActionAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftTeamsSensitivityLabelActionAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MicrosoftTeamsShiftsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MipAutoLabelExchangeItemAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MipAutoLabelItemAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MipAutoLabelPolicyAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MipAutoLabelProgressFeedbackAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MipAutoLabelSharePointItemAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MipAutoLabelSharePointPolicyLocationAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MipAutoLabelSimulationSharePointCompletionRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MipAutoLabelSimulationSharePointProgressRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MipAutoLabelSimulationStatisticsRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MipAutoLabelSimulationStatusRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MipExactDataMatchAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MipLabelAnalyticsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MipLabelAuditRecord extends AuditData {} interface MoveToDeletedItemsResponseAction extends ResponseAction { /** * Unique identifier for the response action. Default is networkMessageId,recipientEmailAddress. The possible values are: @@ -72424,6 +73172,26 @@ export namespace SecurityNamespace { */ identifier?: EmailEntityIdentifier; } +// tslint:disable-next-line: no-empty-interface + interface MS365DCustomDetectionAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MS365DIncidentAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MS365DSuppressionRuleAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MsdeGeneralSettingsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MsdeIndicatorsSettingsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MsdeResponseActionsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MsdeRolesSettingsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MsticNationStateNotificationRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MultiStageDispositionAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface MyAnalyticsSettingsAuditRecord extends AuditData {} interface NetworkConnectionEvidence extends AlertEvidence { destinationAddress?: NullableOption; destinationPort?: NullableOption; @@ -72457,12 +73225,86 @@ export namespace SecurityNamespace { */ timeout?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface OfficeNativeAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface OmePortalAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface OneDriveAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface OnPremisesFileShareScannerDlpAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface OnPremisesScannerDlpAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface OnPremisesSharePointScannerDlpAuditRecord extends AuditData {} interface OrganizationalScope { // List of groups to which the custom detection rule applies. scopeNames?: NullableOption; // The type of the organizational scope. The possible values are: deviceGroup, unknownFutureValue. scopeType?: ScopeType; } +// tslint:disable-next-line: no-empty-interface + interface OwaGetAccessTokenForResourceAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PeopleAdminSettingsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PhysicalBadgingSignalAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PlannerCopyPlanAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PlannerPlanAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PlannerPlanListAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PlannerRosterAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PlannerRosterSensitivityLabelAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PlannerTaskAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PlannerTaskListAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PlannerTenantSettingsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PowerAppsAuditAppRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PowerAppsAuditPlanRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PowerAppsAuditResourceRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PowerBiAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PowerBiDlpAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PowerPagesSiteAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PowerPlatformAdminDlpAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PowerPlatformAdminEnvironmentAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PowerPlatformAdministratorActivityRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PowerPlatformLockboxResourceAccessRequestAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PowerPlatformLockboxResourceCommandAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PowerPlatformServiceActivityAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PrivacyDataMatchAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PrivacyDataMinimizationRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PrivacyDigestEmailRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PrivacyOpenAccessAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PrivacyPortalAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PrivacyRemediationActionRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PrivacyRemediationRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PrivacyTenantAuditHistoryRecord extends AuditData {} interface ProcessEvidence extends AlertEvidence { // The status of the detection. The possible values are: detected, blocked, prevented, unknownFutureValue. detectionStatus?: NullableOption; @@ -72491,6 +73333,22 @@ export namespace SecurityNamespace { // User details of the user that ran the process. userAccount?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface ProjectAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ProjectForTheWebAssignedToMeSettingsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ProjectForTheWebProjectAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ProjectForTheWebProjectSettingsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ProjectForTheWebRoadmapAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ProjectForTheWebRoadmapItemAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ProjectForTheWebRoadmapSettingsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ProjectForTheWebTaskAuditRecord extends AuditData {} // tslint:disable-next-line: no-empty-interface interface ProtectAdhocAction extends InformationProtectionAction {} interface ProtectByTemplateAction extends InformationProtectionAction { @@ -72499,6 +73357,14 @@ export namespace SecurityNamespace { } // tslint:disable-next-line: no-empty-interface interface ProtectDoNotForwardAction extends InformationProtectionAction {} +// tslint:disable-next-line: no-empty-interface + interface PublicFolderAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PurviewInsiderRiskAlertsRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface PurviewInsiderRiskCasesRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface QuarantineAuditRecord extends AuditData {} interface QueryCondition { // Timestamp of when the query in the custom detection rule was last updated. lastModifiedDateTime?: NullableOption; @@ -72518,6 +73384,8 @@ export namespace SecurityNamespace { responsibleSensitiveTypeIds?: string[]; sensitivityLabelId?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface RecordsManagementAuditRecord extends AuditData {} interface RedundancyDetectionSettings { // Indicates whether email threading and near duplicate detection are enabled. isEnabled?: NullableOption; @@ -72591,6 +73459,8 @@ export namespace SecurityNamespace { // The status of the distribution. The possible values are: pending, error, success, notAvaliable. status?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface RetentionPolicyAuditRecord extends AuditData {} interface RuleSchedule { // Timestamp of the custom detection rule's next scheduled run. nextRunDateTime?: NullableOption; @@ -72633,6 +73503,24 @@ export namespace SecurityNamespace { startDateTime?: NullableOption; storageResource?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface ScoreEvidence extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ScorePlatformGenericAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ScriptRunAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SearchAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SecurityComplianceAlertRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SecurityComplianceCenterEOPCmdletAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SecurityComplianceInsightsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SecurityComplianceRBACAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SecurityComplianceUserChangeAuditRecord extends AuditData {} interface SecurityGroupEvidence extends AlertEvidence { // The name of the security group. displayName?: NullableOption; @@ -72640,12 +73528,17 @@ export namespace SecurityNamespace { securityGroupId?: NullableOption; } interface SensorDeploymentPackage { + // URL to download the sensor deployment package. downloadUrl?: string; + // Version of the sensor. version?: string; } interface SensorSettings { - description?: string; + // Description of the sensor. + description?: NullableOption; + // DNS names for the domain controller domainControllerDnsNames?: NullableOption; + // Indicates whether to delay updates for the sensor. isDelayedDeploymentEnabled?: NullableOption; networkAdapters?: NullableOption; } @@ -72657,6 +73550,24 @@ export namespace SecurityNamespace { servicePrincipalType?: NullableOption; tenantId?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface SharePointAppPermissionOperationAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SharePointAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SharePointCommentOperationAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SharePointContentTypeOperationAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SharePointESignatureAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SharePointFieldOperationAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SharePointFileOperationAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SharePointListOperationAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SharePointSharingOperationAuditRecord extends AuditData {} interface SigningResult { signature?: NullableOption; signingKeyId?: NullableOption; @@ -72667,6 +73578,18 @@ export namespace SecurityNamespace { // The type of the property. type?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface SkypeForBusinessBaseAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SkypeForBusinessCmdletsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SkypeForBusinessPSTNUsageAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SkypeForBusinessUsersBlockedAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SmsCreatePhoneNumberRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SmsDeletePhoneNumberRecord extends AuditData {} interface SoftDeleteResponseAction extends ResponseAction { /** * Unique identifier for the response action. Default is networkMessageId,recipientEmailAddress. The possible values are: @@ -72769,6 +73692,18 @@ export namespace SecurityNamespace { // The email of user who is making the submission when logged in (delegated token case). email?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface SupervisoryReviewDayXInsightsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface SyntheticProbeAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface TeamsEasyApprovalsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface TeamsHealthcareAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface TeamsUpdatesAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface TenantAllowBlockListAuditRecord extends AuditData {} interface TenantAllowBlockListEntryResult { /** * The tenant allow-block list entry type. The possible values are: url, fileHash, sender, recipient and @@ -72800,6 +73735,16 @@ export namespace SecurityNamespace { // Contains the result of the submission that lead to the tenant allow-block-list entry creation. results?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface ThreatFinderAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ThreatIntelligenceAtpContentData extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ThreatIntelligenceMailData extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface ThreatIntelligenceUrlClickData extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface TodoAuditRecord extends AuditData {} interface TopicModelingSettings { /** * Indicates whether the themes model should dynamically optimize the number of generated topics. To learn more, see @@ -72819,6 +73764,22 @@ export namespace SecurityNamespace { */ topicCount?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface UamOperationAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface UnifiedGroupAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface UnifiedSimulationMatchedItemAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface UnifiedSimulationSummaryAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface UploadCertificateRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface UrbacAssignmentAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface UrbacEnableStateAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface UrbacRoleAuditRecord extends AuditData {} interface UrlEvidence extends AlertEvidence { // The Unique Resource Locator (URL). url?: NullableOption; @@ -72842,9 +73803,33 @@ export namespace SecurityNamespace { // The user account details. userAccount?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface UserTrainingAuditRecord extends AuditData {} interface VerificationResult { signatureValid?: boolean; } +// tslint:disable-next-line: no-empty-interface + interface VfamBasePolicyAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface VfamCreatePolicyAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface VfamDeletePolicyAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface VfamUpdatePolicyAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface VivaGoalsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface VivaLearningAdminAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface VivaLearningAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface VivaPulseAdminAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface VivaPulseOrganizerAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface VivaPulseReportAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface VivaPulseResponseAuditRecord extends AuditData {} interface VmMetadata { // The cloud provider hosting the virtual machine. The possible values are: unknown, azure, unknownFutureValue. cloudProvider?: VmCloudProvider; @@ -72855,6 +73840,8 @@ export namespace SecurityNamespace { // Unique identifier of the virtual machine instance. vmId?: NullableOption; } +// tslint:disable-next-line: no-empty-interface + interface WdatpAlertsAuditRecord extends AuditData {} interface WhoisContact { // The physical address of the entity. address?: NullableOption; @@ -72882,6 +73869,12 @@ export namespace SecurityNamespace { lastSeenDateTime?: NullableOption; host?: Host; } +// tslint:disable-next-line: no-empty-interface + interface Windows365CustomerLockboxAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface WorkplaceAnalyticsAuditRecord extends AuditData {} +// tslint:disable-next-line: no-empty-interface + interface YammerAuditRecord extends AuditData {} } export namespace TeamsUserConfiguration { type AccountType = "user" | "resourceAccount" | "guest" | "sfbOnPremUser" | "unknown" | "unknownFutureValue"; @@ -73049,7 +74042,7 @@ export namespace WindowsUpdates { recommendedBy?: string[]; } interface AzureADDevice extends UpdatableAsset { - // Specifies areas of the service in which the device is enrolled. Read-only. Returned by default. + // Specifies areas in which the device is enrolled. Read-only. Returned by default. enrollments?: NullableOption; /** * Specifies any errors that prevent the device from being enrolled in update management or receving deployed content. @@ -73063,9 +74056,9 @@ export namespace WindowsUpdates { } interface CatalogEntry extends microsoftgraphbeta.Entity { /** - * The date on which the content is no longer available to deploy using the service. The Timestamp type represents date - * and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is - * 2014-01-01T00:00:00Z. Read-only. + * The date on which the content is no longer available to deploy. The Timestamp type represents date and time information + * using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z. + * Read-only. */ deployableUntilDateTime?: NullableOption; // The display name of the content. Read-only. @@ -73511,8 +74504,8 @@ export namespace WindowsUpdates { interface UpdatableAssetError {} interface UpdateManagementEnrollment extends UpdatableAssetEnrollment { /** - * The category of updates that the service manages. Supports a subset of the values for updateCategory. Possible values - * are: driver, feature, quality, unknownFutureValue. + * The category of updates that Windows Autopatch manages. Supports a subset of the values for updateCategory. Possible + * values are: driver, feature, quality, unknownFutureValue. */ updateCategory?: UpdateCategory; }