Developer Guide and Resources
Check out the documentation, code samples, videos and guide to get started, that you can use in your submissions! Remember to leverage at least one entity from the Microsoft Graph Security API in your application and feel free to mix and match with other Microsoft Graph entities. Be creative!
Getting Started Guide - Steps revised 12/18/2018
1) The initial step to building your application is to register your application with Azure AD for Graph access and follow the steps for Graph Security authorization. Application registration is a pre-requisite for getting access to the data. Register your app even before you start building your app, or if you've already started, please register it right away.
2) From here, you can choose to either a) Use our demo data, or b) Build your own data. If you plan to use our demo data, please read ‘How to use our demo data’ and specifically ‘How to get access to demo data’ sections below in Resources before you proceed to the next step. Details on this is also covered in this update.
3) Please complete this short form when you're done so we can help you. If option a) or b) listed above, doesn’t work out as expected, feel free to alter the option before the Hackathon submission deadline. Remember to communicate to us via the form again so that we can help you accordingly.
a) How to use our demo data
You can choose to leverage demo data that we will make available. Each Hackathon participant will have a copy of the data that will be kept separate from other participants. Since this is a shared tenant, user information cannot be altered in any way. However, you can modify the alerts associated with users as needed to demo your application capabilities. This dataset is scoped to receive admin consent to the following Graph Permissions only, hence can pose limitations if your application scenarios depend on permissions beyond the scope of this dataset.
· Agreement.Read.All · AgreementAcceptance.Read · DeviceManagementApps.Read.All · DeviceManagementConfiguration.Read.All · DeviceManagementManagedDevices.Read.All · DeviceManagementRBAC.Read.All · DeviceManagementServiceConfig.Read.All · Directory.AccessAsUser.All · Directory.Read.All · EduAdministration.Read
|
· EduAssignments.Read · EduAssignments.ReadBasic · EduRoster.Read · EduRoster.ReadBasic · Group.Read.All · IdentityRiskEvent.Read.All · People.Read.All · Reports.Read.All · SecurityEvents.ReadWrite.All · User.Read.All
|
How to get access to demo data
- While registering your application, request the following Graph Permissions. This prevents back and forth if your scenarios expand to other Graph entities:
· Agreement.Read.All · AgreementAcceptance.Read · DeviceManagementApps.Read.All · DeviceManagementConfiguration.Read.All · DeviceManagementManagedDevices.Read.All · DeviceManagementRBAC.Read.All · DeviceManagementServiceConfig.Read.All · Directory.AccessAsUser.All · Directory.Read.All · EduAdministration.Read |
· EduAssignments.Read · EduAssignments.ReadBasic · EduRoster.Read · EduRoster.ReadBasic · Group.Read.All · IdentityRiskEvent.Read.All · People.Read.All · Reports.Read.All · SecurityEvents.ReadWrite.All · User.Read.All
|
- Complete the form. Share your application ID privately via the survey so that we can grant your application permissions to access this demo tenant’s data.
- Upon successful admin consent of your application, we will share the tenant ID over email to you so that you can access the dataset. Plan for a turnaround time of up to 2 business days for access to the data after you submit the survey.
b) How to build your own data
You can get access to trial licenses of services / products by subscribing to all or some of these, depending on your application requirements and scenarios. While creating the following subscriptions, add it to the same subscription (tenant) and do not create separate subscriptions. This is important so that you can build a common dataset that interacts with different entities in the same subscription giving you an opportunity to enable an E2E experience. This provides flexibility for you to completely control the data around your app and build any type of experience. Complete the form to share your application ID.
Step 1 from the following is required so that you can authenticate with Graph and get access to Azure AD for building your application. Select at least one from the optional items in Steps 2, through 5 for building experiences with Graph Security and add to the same tenant from 1.
- [Required] Join the Office Developer Program and get access to Office 365 Developer Subscription
- [Optional] Get access to Azure Services with a free 12-month subscription and a $200 credit to explore an Azure service for 30 days. This includes free trial of Azure Security Center (Standard)
- [Optional] Get access to Enterprise Mobility and Security E5 90-day free trial for access to Cloud Application Security (CAS), Azure Active Directory Information Protection (AADIP), Azure Information Protection (AIP), Intune and other products depending on your scenario
- [Optional] Get access to Windows Defender Advanced Threat Protection 60-day free trial, depending on your scenario
- [Optional] Get the Azure Active Directory Premium subscription for up-to 100 licenses for a month to enable SSO or salesforce and other integrations
Documentation
- Microsoft Graph Security documentation, including alerts and SecureScore entities, along with authentication guidance
- Microsoft Graph Security API white paper
- Microsoft Graph Office Developer tutorials, getting started guides, Graph Explorer, and quick starts
- Microsoft Graph Permissions
Code
- Microsoft Graph Security code samples and SDKs
- Microsoft Graph Code samples and SDKs and GitHub Repo
Communities
Got questions?
- Post a question in the Discussions forum if you need help!
- Join in one of our monthly Office hour Teams calls that’s 2nd Wednesday of each month for the duration of the Hackathon. Click the corresponding link below to join the call. Call links will be published a few days before the call.
Office Hour Timings |
Join the call |
8-9 am Pacific Time (PST) December 12th 2018 |
|
8-9 am Pacific Time (PST) January 9th 2019 |
|
8-9 am Pacific Time (PST) February 13th 2019 |
Videos
Check out these recent videos to learn more about the Graph Security API:
- Overview of Microsoft Graph Security API
- Microsoft Ignite 2018 sessions:
- Harnessing the power of the Intelligent Security Graph
- Unlocking security insights with the Microsoft Graph Security API
- Partner showcase: Empowering security ecosystem partners using Microsoft Graph Security API - THR2014 – Preeti Krishna
- Partner showcase: Empowering security ecosystem partners using Microsoft Graph Security API - THR2015 – Francesco Vigo (Palo Alto Networks)
- Demisto Microsoft Graph Security integration
Find a team
No one is an expert at everything, so you may want to consider looking for a teammate to help you iron out the kinks and fill in the blanks of your submission. We’ve got a few tips for finding a teammate in case you need them.
Use the competition Participants page to connect
In our experience, it’s more fun to code with a friend. On the Participants tab, you can:
- Look for teammates by introducing yourself to the community. Mention any ideas you have and what kind of teammates you’re looking for.
- Sort participants by the number of projects and followers they have or by registration date.
- Search participants by name, skills, and portfolio info.
- Reach out to potential teammates and get to know each other.
- Collaborate on something amazing!