Views:

Understand how Microsoft Entra ID data is used in associated apps after you grant access permissions.

Associated App
Description
Email Asset Inventory
Email Asset Inventory uses Microsoft Entra ID data to managed Email Sensor on protected email accounts.
Mobile Security
Mobile Security uses Microsoft Entra ID data to enable end users to authenticate with Microsoft Entra ID during mobile device enrollment.
Phishing Simulation Assessment
Phishing Simulation Assessment uses Microsoft Entra ID data to add recipients to phishing simulations and identify employees who require additional security awareness education.
Attack Surface Risk Management
Attack Surface Risk Management uses Microsoft Entra ID data for the following purposes:
  • Gain deeper insight regarding the apps and devices your users access, and the behaviors that contribute to users' risk analysis.
  • Perform policy enforcement actions in Microsoft Entra ID, such as disabling user accounts and forcing password reset.
Search
Observed Attack Techniques
Workbench
Observed Attack Techniques, Search, and Workbench use Microsoft Entra ID data to perform policy enforcement actions, such as disabling user accounts and forcing password reset, through the Response Management app.
User Accounts
User Accounts uses Microsoft Entra ID data to create user accounts using the distribution list email addresses and member names.
Zero Trust Secure Access
Zero Trust Secure Access uses Microsoft Entra ID data for the following purposes:
  • Synchronize users/groups to provide granular access control over specified users/groups.
  • Perform policy enforcement actions in Microsoft Entra ID, such as disabling user accounts and forcing password reset.
    Note
    Note
    If you use Private Access and Internet Access only, the least permission required is Read directory data. If you use the full Zero Trust Secure Access features, grant the Read directory data and perform account management actions permission.
  • Access the Microsoft Perview Information Protection-encrypted content and published sensitivity labels for data loss prevention in Internet Access.