Accounts With Excessive Privilege are accounts with permissions settings that are likely to cause additional risk.
The Accounts With Excessive Privilege widget displays a record of the
number of excessively privileged accounts over the past 30 days.
Types of excessive account privilege include:
-
Service account misconfiguration: Service accounts with excessive privileges, or service accounts that are more permissioned than the regular accounts that manage them.
-
Highly authorized disabled accounts : Disabled accounts that are assigned to highly-authorized roles or groups.
For detailed information about your excessively privileged accounts, click View
details.
The following table outlines the sections available on the details screen:
Details Screen Sections
|
Section
|
Description
|
||
|
Remediation actions
|
Suggests remediation actions for each type of excessive account privilege
|
||
|
Threat Detections with Potential to Exploit Account Configuration
Risks
|
Displays threat detections occurring in Microsoft Entra ID over
the last 30 days that have the potential to exploit account configuration risks.
Threat detections types include:
|
||
|
Accounts With Excessive Privilege table
|
Lists accounts in your organization with excessive privilege
|
