Default Settings - Consent Policy Settings - Block user consent for risky apps
Why This Matters
Allowing users to consent to risky applications exposes your organization to security threats from malicious or poorly developed apps. Malicious apps can gain unauthorized access to sensitive data, compromise user accounts, or perform actions on behalf of your users without your knowledge. By blocking user consent for risky apps, you ensure that only verified, low-risk applications can request permissions, reducing the attack surface.
What Aether365 Checks
Aether365 verifies that the Consent Policy Settings are configured to block user consent for risky apps. This check appears in your Aether365 dashboard under the entra-id section.