@lbendlin  thanks for the reply. Hopefully, you are familar with the Intune Data Warehouse. It's a star-schema that is very messy and looks like this (I cannot pull in all the tables it offers due to sheer memory and performance constraints).

I would like to create some visualizations on these devices in Table 'devices" but much of the data are keys to other tables. For instance, how would I write out a Natural Language Query that is

Pecentage of Total Active Devices with Crtical Vulnerabilties that are more than thirty (30) days old?

The Total count of deviceId from the Device table filtered by IsEnabled=True but ? what next ? which table from the schema provides this?

I was not able to find a table I could use for the remainder of the data (or unsure of which this is). So instead I downloaded this from Intune and unfortunately, Microsoft failed to provide a key in that data to relate to, so I only have a count of endpoints in each vulnerability (see second header image)(notice everything is a key to another table... reminds me of the Microsoft licensing model 🤣).

If you have a table you can suggest I use that is standard to the Intune Data Warehouse, I'll use that with the rest of the query.

If not, we would have to instead use the exported data from Intune - limited to the following fields (name is not the name of the device but the vulnerability CVE number)

With these fields, I don't see a means to use Active or anything of that (wish there was a key for this or a table I could actually pulldown that didn't blow up BI). So in this case how can I write this?

Perecentage or number (since we don't know which vulnerability name and counts overlap) of the devices with critical (Severity) >= Age of 30 

Hopefully this makes sense?