BOD-25-01-CSA-Microsoft-Policy-MCP

block_high_risk_users

Identify and block users flagged as high risk in Microsoft 365 environments to comply with CSA BOD 25-01 security requirements.

Block users detected as high risk (MS.AAD.2.1v1)

Name	Required	Description	Default
No arguments

{
  "properties": {},
  "type": "object"
}

block_high_risk_signins
@DynamicEndpoints/Automated-BOD-25-01-CISA-Microsoft-Policies-MCP
restrict_app_consent
@DynamicEndpoints/Automated-BOD-25-01-CISA-Microsoft-Policies-MCP
block_legacy_auth
@DynamicEndpoints/Automated-BOD-25-01-CISA-Microsoft-Policies-MCP
enforce_cloud_accounts
@DynamicEndpoints/Automated-BOD-25-01-CISA-Microsoft-Policies-MCP
restrict_group_consent
@DynamicEndpoints/Automated-BOD-25-01-CISA-Microsoft-Policies-MCP
enforce_granular_roles
@DynamicEndpoints/Automated-BOD-25-01-CISA-Microsoft-Policies-MCP

ID: rml141i0fk