v1.0 for Steampipe, Powerpipe, Flowpipe, 116 plugins, and 44 mods →
Steampipe logo 
Hub
Plugins
turbot/azuread
Overview
21Tables
Versions
PowerpipeMods
GitHub
steampipe plugin install azuread

Table: azuread_conditional_access_named_location - Query Microsoft Entra Named Locations using SQL

Microsoft Entra Named Locations is a feature in Azure Active Directory (Microsoft Entra) that allows administrators to define custom Named Locations. These Custom named locations can be included in Conditional Access Policies and restrict user access to this specific locations. There are two types of Named Locations - IP based Named locations and Country based Named Locations, the table supports both types.

Table Usage Guide

The azuread_conditional_access_named_location table provides insights into Named Locations within Azure Active Directory (Microsoft Entra). As a security administrator, you can understand policies based on Named Locations better through this table, including display name, type, and detailed location information. Utilize it to uncover information about custom Named Locations, understand Conditional Access policies better, and maintain security and compliance within your organization.

Examples

Basic info

Analyze the settings to understand the status and creation date of the Named Locations in your Microsoft Entra Named Locations. This can help you assess the locations elements within your Conditional Access Policy and make necessary adjustments.

select
  id,
  display_name,
  location_type,
  created_date_time,
  modified_date_time
from
  azuread_conditional_access_named_location;
select
  id,
  display_name,
  location_type,
  created_date_time,
  modified_date_time
from
  azuread_conditional_access_named_location;

Detailed information about the Named Location definitions

Analyze detailed information about the definition of Named Locations in your Microsoft Entra Named Locations. This can help you understand the locations elements within your Conditional Access Policy and assure the definitions are compliance within your organization policies.

select
  id,
  display_name,
  location_type,
  location_info
from
  azuread_conditional_access_named_location;
select
  id,
  display_name,
  location_type,
  location_info
from
  azuread_conditional_access_named_location;

Detailed information about IP based named location

Retrieve IP based Named Locations in your Microsoft Entra Named Locations. This can help you understand the locations elements within your Conditional Access Policy distringuishes between different types of named locations (Options: [IP, Country]).

select
  id,
  display_name,
  location_info
from
  azuread_conditional_access_named_location
where
  location_type = 'IP';
select
  id,
  display_name,
  location_info
from
  azuread_conditional_access_named_location
where
  location_type = 'IP';

Schema for azuread_conditional_access_named_location

NameTypeOperatorsDescription
_ctxjsonbSteampipe context in JSON form.
created_date_timetimestamp with time zoneThe create date of the Named Location object.
display_nametext=Specifies a display name for the Named Location object.
idtext=Specifies the identifier of a Named Location object.
location_infojsonbSpecifies some location information for the Named Location object. Now supported: IP (v4/6 and CIDR/Range), odata_type, IsTrusted (for IP named locations only). Country (and regions, if exist), lookup method, UnkownCountriesAndRegions (for country named locations only).
location_typetext=Specifies the type of the Named Location object: IP or Country.
modified_date_timetimestamp with time zoneThe modification date of Named Location object.
sp_connection_nametext=, !=, ~~, ~~*, !~~, !~~*Steampipe connection name.
sp_ctxjsonbSteampipe context in JSON form.
tenant_idtext=, !=, ~~, ~~*, !~~, !~~*The Azure Tenant ID where the resource is located.
titletextTitle of the resource.

Export

This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:

/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- azuread

You can pass the configuration to the command with the --config argument:

steampipe_export_azuread --config '<your_config>' azuread_conditional_access_named_location