Default Authorization Settings - Allow user consent on risk-based apps
Why This Matters
The allowUserConsentForRiskyApps setting controls whether users can consent to applications that Microsoft Entra ID identifies as risky based on real-time signals. If enabled, users may unknowingly grant permissions to malicious or suspicious apps, increasing the risk of data exposure and unauthorized access. Disabling this setting ensures that only administrators can authorize risky apps, providing a critical layer of protection against consent-based attacks.
What Aether365 Checks
Aether365 verifies that the allowUserConsentForRiskyApps property in the authorizationPolicy is set to false. This check appears in the Aether365 dashboard under the entra-id section.