private/tests/Test-Assessment.21804.ps1
|
<# .SYNOPSIS #> function Test-Assessment-21804 { [CmdletBinding()] param() Write-PSFMessage '🟦 Start' -Tag Test -Level VeryVerbose $activity = "Checking Weak authentication methods are disabled" Write-ZtProgress -Activity $activity -Status "Getting policy" $authMethodsPolicy = Invoke-ZtGraphRequest -RelativeUri "policies/authenticationMethodsPolicy" -ApiVersion 'v1.0' $matchedMethods = $authMethodsPolicy.authenticationMethodConfigurations | Where-Object { $_.id -eq 'Sms' -or $_.id -eq 'Voice' } $testResultMarkdown = "" # If the "state" property of any of the matched methods is "enabled", fail the test. Else pass the test. if ($matchedMethods.state -contains 'enabled') { $passed = $false $testResultMarkdown += "Found weak authentication methods that are still enabled.`n`n%TestResult%" } else { $passed = $true $testResultMarkdown += "SMS and voice calls authentication methods are disabled in the tenant.`n`n%TestResult%" } # Build the detailed sections of the markdown # Define variables to insert into the format string $reportTitle = "Weak authentication methods" $tableRows = "" # Create a here-string with format placeholders {0}, {1}, etc. $formatTemplate = @' ## {0} | Method ID | Is method weak? | State | | :-------- | :-------------- | :---- | {1} '@ foreach ($method in $matchedMethods) { $tableRows += @" | $($method.id) | Yes | $($method.state) |`n "@ } # Format the template by replacing placeholders with values $mdInfo = $formatTemplate -f $reportTitle, $tableRows # Replace the placeholder with the detailed information $testResultMarkdown = $testResultMarkdown -replace "%TestResult%", $mdInfo $params = @{ TestId = '21804' Title = "Weak authentication methods are disabled" UserImpact = 'Medium' Risk = 'High' ImplementationCost = 'Medium' AppliesTo = 'Identity' Tag = 'Identity' Status = $passed Result = $testResultMarkdown } Add-ZtTestResultDetail @params } |