Ensure 'Access reviews' for Guest Users are configured
Why This Matters
Guest user access to groups, applications, and role assignments can drift over time without proper oversight. If a guest retains access longer than necessary, they may inadvertently gain access to sensitive data when new files or resources are added to a shared location. Configuring recurring access reviews ensures that outdated guest permissions are identified and removed, minimizing the risk of unauthorized access to sensitive information.
What Aether365 Checks
This check verifies that access reviews for guest users are configured to occur at least once a month. In the Aether365 dashboard, this check appears under the Entra ID section with the identifier ENTRA.1137.