• New parameter -ManagementGroupsOnly - collect data only for Management Groups (Subscription data such as e.g. Policy assignments etc. will not be collected)
• New feature TenantSummary | Subscriptions, Resources & Defender, TenantSummary | Azure Active Directory and ScopeInsights insights on UserAssignedIdentities/Resources - which resource has an user assigned managed identity assigned / vice versa. Includes CSV export. Thanks to Thomas Naunheim (Microsoft Azure MVP) for inspiration :)
• New feature TenantSummary | Policy | Policy assignments orphanded (Policy assignments's Policy definition does not exist / likely Management Group scoped Policy defintion - Management Group deleted)
• Optimize DefinitionInsights collapsible JSON definitions
• Defender plans usage / highlight use of depcrecated plans such as Container Registry & Kubernetes
• New 'Large Tenant' feature TenantSummary | Policy | Policy assignments if the number of Policy assignments exceeds the -HtmlTableRowsLimit parameter's value (default = 20.000) then the html table will not be created / the CSV file will still be created
• New feature TenantSummary | Azure Active Directory | AAD ServicePrincipals type=ManagedIdentity orphaned Managed Identities (for Policy assignment related Managed Identities - Policy assignment does not exist anymore)
• Fix PIM (Priviliged Identity Management) state for inherited Subscription Role assignments
• TenantSummary | Azure Active Directory add link to AzADServicePrincipalInsights (POC)
• Add CSV export for Policy Exemptions
• Add workflow files (YAML) for GitHub Actions (one for OpenID Connect (OIDC))
• Bugfixes
• HTML output patch jQuery / use latest version 3.6.0
• Update Demo
• AzAPICall enhanced error handling (GeneralError, ResourceGroupNotFound)
• Script optimization / prepare for PS module