Skip to content

Segregation of Duties Detector

Version: v1.1.0 | Status: live | Domain: Compliance & Audit | Tier: 2

Automated role conflict detection that supports Maker/Checker controls in AI agent deployment pipelines and helps address SOX Section 404 IT General Controls.

Mapped Controls

2.8, 2.1, 2.3

Prerequisites

Role Requirement
global-reader Global Reader access for Entra ID role assignment queries.
power-platform-admin Power Platform administrator access for Dataverse schema deployment and environment role queries.

Verification

Run Invoke-SoDScan.ps1 and confirm rows are created in fsi_sodviolation for enabled records in fsi_conflictrule.

Documentation

Document
Conflict Rules
Dataverse Schema
Prerequisites
Troubleshooting

View source on GitHub { .md-button }