Project 02
ControlOps ANZ Security evidence · M365
Collects read-only evidence from a Microsoft 365 tenant and evaluates it against a security framework — with partial coverage refusing to look compliant.
Seven read-only scopes, with the demo consent record matching the manifest exactly.
Real-world context · Eric Stoynov / Unsplash Live Microsoft Graph, consenting dev tenant — 92 observations
92 live observations integration verified Scroll diagram horizontally →
CONTROLOPS · LIVE M365 EVIDENCE COLLECTION 2026-07-13 · CONSENTING SYNTHETIC DEV TENANT · PSEUDONYMISED 6/6 DATASETS COMPLETE 92 NORMALISED OBSERVATIONS COLLECTION COMPLETE ≠ EVERY FIELD KNOWN CANONICAL DATASET NORMALISED EVIDENCE COLLECTION users 13 identity accounts COMPLETE authMethods joined to identities COMPLETE directoryRoles 2 role assignments COMPLETE servicePrincipals 75 service principals COMPLETE domains 1 domain COMPLETE organization 1 tenant config COMPLETE HONEST FIELD DEGRADATION users.signInActivity HTTP 403 · AuditLog.Read.All omitted lastSignInAt = null no guessed activity date UNKNOWN inactive-account check All six datasets completed. One permission-gated field stayed null, so its dependent check remains UNKNOWN — never a green pass. 03 Next project WaterOps ANZ Drinking water · NZ Material certificate Context photograph: Eric Stoynov / Unsplash. Locally served for this portfolio from the credited source record and used under the Unsplash License . It is illustrative material, not project evidence or an endorsement.