Sample-Reports/IndividualReports/PowerPlatformReport.json
|
[
{ "ReportSummary": { "Manual": 2, "AnnotatedFailedPolicies": { "MS.POWERPLATFORM.2.1v1": { "Comment": null, "RemediationDate": null, "IncorrectResult": false } }, "Failures": 1, "Warnings": 1, "Errors": 0, "Passes": 5, "Omits": 0, "Date": "05/04/2026 17:15:48 Coordinated Universal Time", "IncorrectResults": 0 }, "Results": [ { "GroupName": "Creation of Power Platform Environments", "GroupNumber": "1", "GroupReferenceURL": "https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#1-creation-of-power-platform-environments", "Controls": [ { "Control ID": "MS.POWERPLATFORM.1.1v1", "Requirement": "The ability to create production and sandbox environments SHALL be restricted to admins.<div class='policy-indicators'><a href='https://www.cisa.gov/news-events/directives/bod-25-01-implementation-guidance-implementing-secure-practices-cloud-services' target='_blank' class='indicator indicator-bod' title='BOD 25-01 Requirement'>BOD 25-01 Requirement</a><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#key-terminology' target='_blank' class='indicator indicator-automated' title='Automated Check'>Automated Check</a></div>", "Result": "Pass", "Criticality": "Shall", "Details": "Requirement met", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "Pass", "OriginalDetails": "Requirement met", "Comments": [ ], "ResolutionDate": null }, { "Control ID": "MS.POWERPLATFORM.1.2v1", "Requirement": "The ability to create trial environments SHALL be restricted to admins.<div class='policy-indicators'><a href='https://www.cisa.gov/news-events/directives/bod-25-01-implementation-guidance-implementing-secure-practices-cloud-services' target='_blank' class='indicator indicator-bod' title='BOD 25-01 Requirement'>BOD 25-01 Requirement</a><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#key-terminology' target='_blank' class='indicator indicator-automated' title='Automated Check'>Automated Check</a></div>", "Result": "Pass", "Criticality": "Shall", "Details": "Requirement met", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "Pass", "OriginalDetails": "Requirement met", "Comments": [ ], "ResolutionDate": null } ] }, { "GroupName": "Power Platform Data Loss Prevention Policies", "GroupNumber": "2", "GroupReferenceURL": "https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#2-power-platform-data-loss-prevention-policies", "Controls": [ { "Control ID": "MS.POWERPLATFORM.2.1v1", "Requirement": "A DLP policy SHALL be created to restrict connector access in the default Power Platform environment.<div class='policy-indicators'><a href='https://www.cisa.gov/news-events/directives/bod-25-01-implementation-guidance-implementing-secure-practices-cloud-services' target='_blank' class='indicator indicator-bod' title='BOD 25-01 Requirement'>BOD 25-01 Requirement</a><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#key-terminology' target='_blank' class='indicator indicator-automated' title='Automated Check'>Automated Check</a></div>", "Result": "Fail", "Criticality": "Shall", "Details": "No policy found that applies to default environment", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "Fail", "OriginalDetails": "No policy found that applies to default environment", "Comments": [ ], "ResolutionDate": null }, { "Control ID": "MS.POWERPLATFORM.2.2v1", "Requirement": "Non-default environments SHOULD have at least one DLP policy affecting them.<div class='policy-indicators'><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#key-terminology' target='_blank' class='indicator indicator-automated' title='Automated Check'>Automated Check</a></div>", "Result": "Warning", "Criticality": "Should", "Details": "No DLP policies found", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "Warning", "OriginalDetails": "No DLP policies found", "Comments": [ ], "ResolutionDate": null } ] }, { "GroupName": "Power Platform Tenant Isolation", "GroupNumber": "3", "GroupReferenceURL": "https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#3-power-platform-tenant-isolation", "Controls": [ { "Control ID": "MS.POWERPLATFORM.3.1v1", "Requirement": "Power Platform tenant isolation SHALL be enabled.<div class='policy-indicators'><a href='https://www.cisa.gov/news-events/directives/bod-25-01-implementation-guidance-implementing-secure-practices-cloud-services' target='_blank' class='indicator indicator-bod' title='BOD 25-01 Requirement'>BOD 25-01 Requirement</a><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#key-terminology' target='_blank' class='indicator indicator-automated' title='Automated Check'>Automated Check</a></div>", "Result": "Pass", "Criticality": "Shall", "Details": "Requirement met", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "Pass", "OriginalDetails": "Requirement met", "Comments": [ ], "ResolutionDate": null }, { "Control ID": "MS.POWERPLATFORM.3.2v1", "Requirement": "An inbound/outbound connection allowlist SHOULD be configured.<div class='policy-indicators'><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#mspowerplatform32v1-instructions' target='_blank' class='indicator indicator-manual' title='Manual'>Manual</a></div>", "Result": "N/A", "Criticality": "Should/Not-Implemented", "Details": "This product does not currently have the capability to check compliance for this policy. See <a href=\"https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#mspowerplatform32v1\" target=\"_blank\">Secure Configuration Baseline policy</a> for instructions on manual check", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "N/A", "OriginalDetails": "This product does not currently have the capability to check compliance for this policy. See <a href=\"https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#mspowerplatform32v1\" target=\"_blank\">Secure Configuration Baseline policy</a> for instructions on manual check", "Comments": [ ], "ResolutionDate": null } ] }, { "GroupName": "Power Apps Content Security Policy", "GroupNumber": "4", "GroupReferenceURL": "https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#4-power-apps-content-security-policy", "Controls": [ { "Control ID": "MS.POWERPLATFORM.4.1v1", "Requirement": "Content Security Policy (CSP) SHALL be enforced for model-driven and canvas Power Apps.<div class='policy-indicators'><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#mspowerplatform41v1-instructions' target='_blank' class='indicator indicator-manual' title='Manual'>Manual</a></div>", "Result": "N/A", "Criticality": "Shall/Not-Implemented", "Details": "This product does not currently have the capability to check compliance for this policy. See <a href=\"https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#mspowerplatform41v1\" target=\"_blank\">Secure Configuration Baseline policy</a> for instructions on manual check", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "N/A", "OriginalDetails": "This product does not currently have the capability to check compliance for this policy. See <a href=\"https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#mspowerplatform41v1\" target=\"_blank\">Secure Configuration Baseline policy</a> for instructions on manual check", "Comments": [ ], "ResolutionDate": null } ] }, { "GroupName": "Power Pages Creation", "GroupNumber": "5", "GroupReferenceURL": "https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#5-power-pages-creation", "Controls": [ { "Control ID": "MS.POWERPLATFORM.5.1v1", "Requirement": "The ability to create Power Pages sites SHOULD be restricted to admins.<div class='policy-indicators'><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#key-terminology' target='_blank' class='indicator indicator-automated' title='Automated Check'>Automated Check</a></div>", "Result": "Pass", "Criticality": "Should", "Details": "Requirement met", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "Pass", "OriginalDetails": "Requirement met", "Comments": [ ], "ResolutionDate": null } ] }, { "GroupName": "Power Apps Sharing Controls", "GroupNumber": "6", "GroupReferenceURL": "https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#6-power-apps-sharing-controls", "Controls": [ { "Control ID": "MS.POWERPLATFORM.6.1v1", "Requirement": "The Share with Everyone feature SHOULD be disabled.<div class='policy-indicators'><a href='https://github.com/cisagov/ScubaGear/blob/v1.8.0/PowerShell/ScubaGear/baselines/powerplatform.md#key-terminology' target='_blank' class='indicator indicator-automated' title='Automated Check'>Automated Check</a></div>", "Result": "Pass", "Criticality": "Should", "Details": "Requirement met", "OmittedEvaluationResult": "N/A", "OmittedEvaluationDetails": "N/A", "IncorrectResult": "N/A", "IncorrectResultDetails": "N/A", "OriginalResult": "Pass", "OriginalDetails": "Requirement met", "Comments": [ ], "ResolutionDate": null } ] } ], "MetaData": { "Tenant Display Name": "tqhjy", "Report Date": "05/04/2026 17:15:48 Coordinated Universal Time", "Baseline Version": "1", "Module Version": "1.8.0" } } ] |