Ensure that only organizationally managed/approved public groups exist
Why This Matters
Microsoft 365 Groups are the backbone of teamwork across Microsoft 365, granting access to shared resources like SharePoint sites and mailboxes. When a group is created as public by default, any authenticated user within your organization can discover and access the group and its associated data without explicit approval. This uncontrolled access can expose sensitive information to unauthorized users, making it critical to audit and approve all public groups.
What Aether365 Checks
Aether365 scans your Microsoft Entra ID tenant to identify all Microsoft 365 groups with a privacy setting of "Public" that may not be organizationally managed or approved. This check appears in the Aether365 dashboard under the entra-id section with the ID ENTRA.1134.
How to Fix
To remediate this issue, review each public Microsoft 365 group and change its privacy setting to "Private" if it does not require public access.