Open In App

We use cookies to ensure you have the best browsing experience on our website. By using our site, you acknowledge that you have read and understood our Cookie Policy & Privacy Policy

Microsoft Azure – Find Security Score by Controls in Azure Subscriptions

Pre-requisite: Azure

In this article, we will show you how to find the security score for the specific azure subscription and also for all subscriptions by subscriptionId using the KQL resource graph query. In order to read resources in Azure using KQL (Kusto Query Language) one should have at least read access on the select subscriptions or “Azure Resource Graph Data Reader” role in the management group.



Steps to Find Security Score

Step 1: Log in to Azure Portal

Step 2: Access the Azure Resource Graph Explorer from azure global search to run the KQL queries.



Step 3: Now run the following KQL (Kusto Query Language) resource graph query to find the security score for subscription in Azure. This query uses the ‘SecurityResources’ table, which contains security-related information for resources in Azure. 

SecurityResources
| where type == 'microsoft.security/securescores/securescorecontrols'
| extend SecureControl = properties.displayName, 
unhealthy = properties.unhealthyResourceCount, 
currentscore = properties.score.current, 
maxscore = properties.score.max, subscriptionId
| project SecureControl , unhealthy, currentscore, maxscore, subscriptionId
| where subscriptionId == "<subscriptionId>"
// use this to filter multiple subscriptions
// | where subscriptionId == "<subscriptionId-01>" or "<subscriptionId-02>"

this query returns the table with columns SecureControl, unhealthy, currentscore, maxscore, subscriptionId for a given subscription.

 

Use the following KQL (Kusto Query Language) resource graph query to find the security score by subscription in Azure.

SecurityResources
| where type == 'microsoft.security/securescores/securescorecontrols'
| extend SecureControl = properties.displayName, 
unhealthy = properties.unhealthyResourceCount, 
currentscore = properties.score.current, 
maxscore = properties.score.max, subscriptionId
| project SecureControl , unhealthy, currentscore, maxscore, subscriptionId

this query returns the table with columns SecureControl, unhealthy, currentscore, maxscore, subscriptionId from all the active subscriptions.

 

Article Tags :
DevOps
Microsoft Azure
Technical Scripter
Recommended Articles
1. Microsoft Azure - VM CPU Utilisation Across Subscriptions with Range
2. Microsoft Azure - Application Security with Azure Active Directory
3. Microsoft Azure - Security Capabilities and Tasks of Azure SQL
4. Microsoft Azure - Security in Azure SQL
5. Microsoft Azure - Get Azure VM Properties using Azure PowerShell
6. Microsoft Azure - RDP to Azure Virtual Machines using Azure Bastion
7. Microsoft Azure - Configure Azure SQL with Azure CLI
8. Microsoft Azure - Get CPU Utilization Data of a Azure VM in Azure Portal
9. Microsoft Azure - Archive Azure VM to Azure Storage Account
10. Microsoft Azure - Check Status of Azure VM using Azure PowerShell
11. Microsoft Azure - Azure VM Disk Space in Percentage using Azure KQL
12. Microsoft Azure - Enable Azure Monitor VM Insights Agent For Azure VM
13. Microsoft Azure - Azure CLI Commands to Manage Azure VMs
14. Microsoft Azure - Manage Azure VMs using Azure PowerShell Commands
15. Microsoft Azure - Query Azure Storage Logs in Azure Monitor Log Analytics
16. Microsoft Azure - Install Azure Command Line Interface (Azure CLI)
17. Microsoft Azure- Disk Storage in Microsoft Azure
18. Microsoft Azure- Backing Up, Restoring, and Cloning Microsoft Azure App Services
19. Microsoft Azure -Create a User in Microsoft Entra ID from Azure Portal
20. Managing Security Settings And Access Controls In Jenkins
21. Microsoft Azure - Find and Delete Orphaned Public IP addresses in Azure Portal
22. Microsoft Azure - Find AD Graph Applications in Azure AD Tenant?
23. Microsoft Azure - Find or Export Azure Compute Images using KQL
24. Microsoft Azure - Azure Managed Disk State Details using PowerShell
25. Microsoft Azure - Introduction to Azure Digital Twins