Monitor and report pending Endpoint Privilege Management (EPM) elevation requests
Queries Microsoft Intune for pending EPM elevation requests and sends an email report. Email is only sent when there are pending requests. Optionally includes detailed information about each request in a table and CSV attachment.
Sending an email report is optional and only happens when a recipient (EmailTo) is provided. The sender address is taken from the RJReport.EmailSender tenant setting.
This runbook sends emails using the Microsoft Graph API. To send emails via Graph API, you need to configure an existing email address in the runbook customization.
See the RealmJoin Report Settings documentation for details.
Organization → Security → Monitor Pending EPM Requests (Scheduled)
Full Runbook name
rjgit-org_security_monitor-pending-EPM-requests_scheduled
Type: Microsoft Graph
DeviceManagementConfiguration.Read.All
Mail.Send
When enabled, includes detailed request information in a table and as CSV attachment. When disabled, only provides a summary count of pending requests.
Required
false
Default Value
False
Type
Boolean
Can be a single address or multiple comma-separated addresses (string). The function sends individual emails to each recipient for privacy reasons.
Required
false
Default Value
Type
String
The sender email address. This needs to be configured in the runbook customization.
Required
false
Default Value
Type
String
Last updated
Was this helpful?
Was this helpful?